Overview

overview

10

Static

static

10

4520-147-0...ry.exe

windows7-x64

4520-147-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4520-147-0x0000000000400000-0x0000000000430000-memory.dmp

  • Size

    192KB

  • MD5

    d42005ad8a51771a290bd783b3e1f878

  • SHA1

    960e83ce90da97037658e5f23d9bd7eaa17b897e

  • SHA256

    faaf99dd09e257ddf4a214937499e1792a32ea1094f6d19e413214c8de505f2d

  • SHA512

    77f500c9e757f4565937bc1d4ae0c7d267908c281bb7021eb64dfef5295e436f458366ee974d8c2c62ec9babce0e1fc2f2bdc7cc95a28dff2bae1af58f7a924c

  • SSDEEP

    3072:5g1Tu+wWZgVnSs6S3hk3I1jE8Z6OZT5lw7Ewj4Sm6JeQmSTbuykFTvVDidnLM:5g1TJUei48ZpZTXw7PySqQNL

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6277254729:AAH9hHYZNSDZac0nNvgmchkZF8WVRKU5dJ0/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4520-147-0x0000000000400000-0x0000000000430000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections