Overview

overview

10

Static

static

10

2656-16-0x...ry.dll

windows7-x64

1

2656-16-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2656-16-0x0000000000450000-0x00000000004A4000-memory.dmp

  • Size

    336KB

  • MD5

    14db2d99e3477b6366f9697c503116dc

  • SHA1

    4b7556de1ddc352f3e6360ccac30e5e55b6b545e

  • SHA256

    e358d0fc865ca35a6af638fc7eaee305db65801013edf10319742fb0d1e97601

  • SHA512

    dffb2fbe8fb27b42eb82365e6cbf18c9d4151e6f2139167587f32209416e42b80825c14c1c1c55ef24fe45736558a1e0256fb7307a06ba7427287d6460abc433

  • SSDEEP

    3072:fx6lyhOlH6Weo/WIPDFMSwV7s3ygWIfyooeF4R19YVIwVbJf+5cq05f:8lyWHsaHR3ygWIfy/eF4gVdc30

Score
10/10
zgratagenttesla

Malware Config

Signatures

  • Agenttesla family
    agenttesla
  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2656-16-0x0000000000450000-0x00000000004A4000-memory.dmp
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections