General
-
Target
2292-9-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
9eb79f29bf416103388b77928585a41d
-
SHA1
dd3167e0054d7d3c5ece8b7b328806aea02beff0
-
SHA256
1a5273d291967476d0395a3ef9a7e283b3738494de1ac020dcbdfb3b9d379519
-
SHA512
ece7d05c21f2a5c6d82b71b4a35556b26acbe9b410500a85a59e87986a1a74e8937c7717d80294495dc92d42bc147cf8f074e8407bce1253974af0c4816aa54d
-
SSDEEP
3072:i8AnffXnsNzrTd/RIR7wcIZmUw1ak5CtdrBXD:JAnffXnsNzrTd/RI7wXcX1abdr5
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6842284005:AAEBxh6cL0NGDg-gb0BoH5Z7v4-Fv4B_wmo/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2292-9-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections