Overview

overview

10

Static

static

10

2072-11-0x...ry.exe

windows7-x64

2072-11-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2072-11-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    e66c4170e64c2fccb53a1b3e40f10c54

  • SHA1

    d3ce406b238bb365bfa7b88abaf93b43b4a4fe45

  • SHA256

    68a0ff6f73e8dbca0c2a50a3c29cc2eec4e0af39737aaf8bf33192e06bbcd38d

  • SHA512

    17b4526409365c81f842ecc271008f2315e47cff75983a4d0b51bddff201f3e3b50a4919ddc8ee01f9262fc0fea91e720066bd258b99cd3d22c04caac3e90eec

  • SSDEEP

    3072:TaWoaqKaakhyDzbJFu0DvvsPvAoygZ1hW5dpKCg8Zn+5:TaWoaqKaakhyDz1nkygZ1h+KCT

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6740417848:AAG5U7WvWwupGTM8CQIMwDQuy1jwkD8O49I/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2072-11-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections