General
-
Target
2812-11-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
fb68e91612861bcb95eba7a0c2fbec64
-
SHA1
85ffdb7c1438caa9377cdb7a3ca2fdf66cb98dc2
-
SHA256
c33b45c2a5ccd485519aa0d05d6d59f09129153d079d6894281a098df7642fa5
-
SHA512
b4353f5243a377495790a57d973168b968b665f23b62bb3eda47c931ee6e40fff0da6fbf006d203e10db7e8ac3569f93ec940981e680ea34278b017039523db2
-
SSDEEP
6144:2vtl7VuSGCueHjx7EnmSTYa7eZ6oR8Z8:WFuSGCueDx7Ok6
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6981023497:AAHl8hNT6c3ywQtrLSswit8gBAF4M9xCAZU/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2812-11-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections