Overview

overview

10

Static

static

10

2612-19-0x...ry.exe

windows7-x64

2612-19-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2612-19-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    c0ac89af200d4746cd9a243786a61e51

  • SHA1

    c771e2c8b7f6ce0f442ae497a6c7d6c2a6693b71

  • SHA256

    f5c334d182fa182a0d39a5fdd7eb7674529513d9f51b79c9af78daf2155cd359

  • SHA512

    6071e25fbe0f5ea9c3bc262d369096ee07178ba9be43c3c36189aba98f25265695ebe76dc6349c9ffeb60e570cdfb45acc75acee9b55d52723564ced88a34ddd

  • SSDEEP

    3072:dc7eOOeu3zYOaplVK5pZSDfprFNYkclPR5JtFtpGJiwQR:dc7eOOeu3zYnpDA4fJ7YZlPfFtg

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1179754620189409280/cvGxRVK_PSI2O0lg_7WaqKbN5d7xo4hk02LOF1QlJexNT6csSiv2fJwBfFcsGuZBRqCm

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2612-19-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections