General
-
Target
760-64-0x0000000000400000-0x0000000000430000-memory.dmp
-
Size
192KB
-
MD5
20070f522f3818efc53a4ceb55407f36
-
SHA1
4a6d0a811dea8c33964926f4c738593f81cca9ea
-
SHA256
28ca72e364b8b9f616e5e200238d6e8f4f124710ab78ff3738dfde11b0d783ef
-
SHA512
322edcabc4260ba4cb83786af9e1b33ac9678b93736e1be0b810ca20e52756122faefe8c5943c932d9f332c1924d94353343e6c93de4d0b8d5d942964bf10196
-
SSDEEP
3072:DFBIQcQsQL3Irj1dpD+rWEzjF1GBnFVHDgxBMxkl+1aDiRlKTg:DFBv3apzDkWMjFafD4BMtaAET
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6019964522:AAF4GL7tiulCBCd_CdLMmgPQ-2YhOYdHGMo/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
760-64-0x0000000000400000-0x0000000000430000-memory.dmp
Headers
Sections