Overview

overview

10

Static

static

10

2604-12-0x...ry.exe

windows7-x64

2604-12-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2604-12-0x0000000000400000-0x0000000000440000-memory.dmp

  • Size

    256KB

  • MD5

    3c626196baa593245e97eaf30c2aef3c

  • SHA1

    f56284a8f71e30cc62c65703e6735c01d62a7ac9

  • SHA256

    4c4280bcccc32e3a1cb40424bfe86c8bc1902569c31d57ae7f590ec2f88d9f81

  • SHA512

    008b68b95702c9f3e67568eabd78b3dfc59e53fa373cdb1fa30c76afdaf62bd1ee283d5a372ca113de32519f0968d5927eac246b6bda22a61e8f45e828a7eb6b

  • SSDEEP

    3072:pMXv/Xn1twLOehA4YFO1ghKCKS5+UGegpaE:pMXv/XnPwLOeq4NghK/0Geg8

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6895243100:AAEakGV8ZnCRYpg0ivATftpb0jZ2g6GDBNM/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2604-12-0x0000000000400000-0x0000000000440000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections