General
-
Target
2344-9-0x0000000000400000-0x000000000043C000-memory.dmp
-
Size
240KB
-
MD5
0365984a2e5592b902df42c219065f62
-
SHA1
c2716db46c0d5cdffd389102e312204c087a7a51
-
SHA256
db40c2995da336b9af7acb02fbe4ca70d688a289460b10b76ed87c6b0baa4920
-
SHA512
e8fddd7d73548b51897ef7a315a64de98b86f4bb849ff62e1168b212bb25306fa3cc41b324dfedc28b817b2d0f88daafde75ae4505c1521efcbd891455b1e799
-
SSDEEP
3072:SmQfhL9hNIMKiC9vcFDwcaUXBt0rvZ1N7ofb/xluQRXOxj9N0UIHeNu1gsKrkaYQ:SfVgvBUMbZ1O5luQRMzpI+Nu1gE3D
Score
10/10
Malware Config
Extracted
Family
agenttesla
Credentials
Protocol: smtp- Host:
mail.gascuenca.es - Port:
587 - Username:
[email protected] - Password:
gasW204@Z7 - Email To:
[email protected]
Signatures
-
AgentTesla payload 1 IoCs
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2344-9-0x0000000000400000-0x000000000043C000-memory.dmp
Headers
Sections