Overview

overview

10

Static

static

10

2372-16-0x...ry.dll

windows7-x64

1

2372-16-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    2372-16-0x0000000000510000-0x0000000000568000-memory.dmp

  • Size

    352KB

  • MD5

    b4bb5e45d19fa58f8c57ce222445f4f5

  • SHA1

    1a5517394f238855ead3bea8cb1dfb561df9f22d

  • SHA256

    6a646ae282d98935d5673ec52a5691f2f1e7abc6b232d98642441031db09ebbd

  • SHA512

    135b1745bac90c819dcbdae02fb34a698edd442d28f8ee7ee6bcc514892281af320c34bc4edeba861c28ca2b1bcc2d247f8b2fbae4820b503f68db79964d5d7c

  • SSDEEP

    3072:5M4qJ5Nx0tboDMv3fzTk3yDP1rg7tWrvqEQCluSc2ZrG/9BYSv6:W4qJ5Nx0tboIvvzoCj1U7yv8ClqDt

Score
10/10
zgratagenttesla

Malware Config

Signatures

  • Agenttesla family
    agenttesla
  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2372-16-0x0000000000510000-0x0000000000568000-memory.dmp
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections