Overview

overview

10

Static

static

10

2856-29-0x...ry.exe

windows7-x64

1

2856-29-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2856-29-0x0000000072680000-0x00000000736E2000-memory.dmp

  • Size

    16.4MB

  • MD5

    ff3e635bc68bc6d84417f4277d73c08f

  • SHA1

    2cde0d51f1519f6c298448168d9157381a486f36

  • SHA256

    daea9a3611b87375707a8187dfd6a834f44fdded4061c7c46be39ca95084423b

  • SHA512

    2748e79c8f46d5732f2394b4ee23ca12c9c822aa247631281a092395c6c9a68b9003b181447b7c1bf3ad5dd4b22d8e66d499878bb628af43e76a2d3059c63cba

  • SSDEEP

    3072:cwoJ9R9JifK3pTNj36H5lCrENbp3U5ZlvrrY1XSb:cwoJ9R9JQK3pTNjk5UrE9p3mx3YB

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6225333215:AAFu6RyUqp4Klj6s7zuEWrA78AFP6bYaof8/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2856-29-0x0000000072680000-0x00000000736E2000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections