Overview

overview

10

Static

static

10

2764-945-0...ry.exe

windows7-x64

2764-945-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2764-945-0x0000000000400000-0x0000000000482000-memory.dmp

  • Size

    520KB

  • MD5

    1601493f6185aa0cea5d74dcc8ae98ca

  • SHA1

    3c03d4c4d0f64ea4e554efe7ba3106e6a4753999

  • SHA256

    3a3674a77ed51ea097dbfc316647f1736af9edc64b6682ceb991770097f20a66

  • SHA512

    253f692b924572f6c37b1c3dcb280974e12f438eec8157e61360994e93d45371bf688e5548359c7cbe469458cf87919765502dc746222a20355e37151a64c039

  • SSDEEP

    12288:KNFl99LOZc9aWqmzN6ondgTVc7b7/qNZmPf2GunmhVNN:KNFl99SZV49dvqkf2Gunmh

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot5677573243:AAFBbq7Lxrb6ay_HsQHghriOyOpLqZx6WrU/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2764-945-0x0000000000400000-0x0000000000482000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections