Overview

overview

10

Static

static

10

2944-12-0x...ry.exe

windows7-x64

2944-12-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2944-12-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    d27cb13223a97fce571b9f254cc6dd41

  • SHA1

    4a496ba0bdea434f76dfdb14756cbfde92d70b8e

  • SHA256

    c49c3baac709f17807bb5b929caebea7c62f97ee4be675af04a45a0ed837cf84

  • SHA512

    8e3f2993a254d79b24ccb7470a9c94c6be070caf4f93f46929f2969c00366887ac73d349637d97cbb5a51b4d73d148cd0d488e416b7d1801122b08daf90f2388

  • SSDEEP

    3072:lwQ5nUXnXvfX9WwrXpFnS5RlVWYOkP3Lp6C5iEdita1/98:lwAnUXnXvfX9WwrXpFnS5yep6mdiY

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1169917901906653224/YjkyFWX_CawSIPQ02zeV3XExHGtDteoh-fLuvdqIFqL772Pb__cJUtnVv4DqDRhm0ks1

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2944-12-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections