General
-
Target
2776-8-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
f4d16fa3d19cf3ac847a86c333711d0a
-
SHA1
46b9348854ffc2d583436d8767e6f403c86147c1
-
SHA256
8b4aa5dae5a5a119fe2367c7dedc7cfdadeeb27978a0d355a5577621d90492e2
-
SHA512
a2ec50224dd548b370b19bdf8d5d2c503daa86c1f46c22846086445aed7ff8e878fa0b64453104024836e074ecacc08b4f66e29a61cb44d941d2eeeb0bf0b487
-
SSDEEP
3072:9tGD0YuW+WusYPedxQkvfgyRcfOPtuzJw1p5GEcgth+x+:v60YuW+WusYPqxjvfgo1uq1DcgP
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://discordapp.com/api/webhooks/1197254961164202145/ptzKDsgHtj6pY49BfLZoBFgkUGXIM695d512QfX0eWtZsuDouCKEGxBU0TiPSCQb8iSK
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2776-8-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections