Overview

overview

10

Static

static

10

2476-9-0x0...ry.exe

windows7-x64

2476-9-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2476-9-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    1cf991d7dfc7a63b47c1280dbde1eb8e

  • SHA1

    65ea50f487a1f23af1ce819fa25da00ec36c5488

  • SHA256

    4fc624dbdd6443854b1116d330f39214bfd898fe65a1eda70ed5c42582231ca0

  • SHA512

    f1caf260252b0a0ebf86c46bbe7127c6d408d7b5b7943b455ffffca7cfdbfb7542c7bba1b99dc3db1bd97d629345d87992d0ae184025deb243749b6890e49f78

  • SSDEEP

    3072:lj7CLfLXbJgh8/2mSLi0jfSyD5r/BhdsR+K:lj7CLfLXbJgh8umSnjfSydBhW

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6758539156:AAFuj1E_hapWTLdEQ6zsa2582gFDEYNH-c8/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2476-9-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections