General
-
Target
2936-16-0x0000000000400000-0x0000000000440000-memory.dmp
-
Size
256KB
-
MD5
23f04194f1111c00cd23385e7f7fef24
-
SHA1
c89327b9c10c562f18fff704a36cfaf044e77a4b
-
SHA256
7420da8c62a5c3f94d0aa914ba84a817de9ddfe89abe7d87378fb49078a4622e
-
SHA512
5acc24d623a686fc6d540a6c75f0857a7667f031a7623083599fc09eed037d7f78170bc117deba5909384ccf48daf099156c9f5269af66c453e3faf8d94914d2
-
SSDEEP
3072:sMUL5COOeu+JfFFgh7wAnKW4K5Xvd7dRZU:sMUL5COOeu+JfFuhp4KdJD
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6897936244:AAFiRNzeuR8ScFc23vl_AX_0YoiR9LyypTg/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2936-16-0x0000000000400000-0x0000000000440000-memory.dmp
Headers
Sections