General
-
Target
1820-2-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
49ab6f42916a16917ac22df9ed1a2e05
-
SHA1
f2df48c056b0fbdb191bd980e1a9785f57890cb2
-
SHA256
3d0c263b906e1b41b5087eefbe25854d52ff21619e67f6e43f40f7328ab3d256
-
SHA512
177218f0c46d2519024409ef3581d1917bdc4bf9fed1876cc6305d2cd40eef3d4667c637e983d23e6cb8c51163c0c968286d0d4c34991d05754488b6cc1094a2
-
SSDEEP
3072:Cb4TbQocYU4ojx22IMy/R8g4pJrCQkgcIyAtM85zR/lBx1tPU:CbwQocYU4ojx26WRQSQkgcIysMQB/h
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6915333261:AAFz5GgbyGR17VBTxatWUWmmjjjBFhicKds/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1820-2-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections