General

  • Target

    2272-16-0x0000000002080000-0x00000000020D8000-memory.dmp

  • Size

    352KB

  • MD5

    ea9f71dcebe8c9acf4c15308c37649a9

  • SHA1

    fc25b79f4532c9613e4768f9bbd7265eef41150d

  • SHA256

    c9e9b52efc21e8d52b971d7eb20f80f1d7b7124dd23ee50e7c54a5c82ec39e73

  • SHA512

    737d31171e407b04d37540767f3937052bb17c2d31d9ff613fc51dffac7e5d6b151ff5d013d855ee7a69968878cf87fe76bb6d5d9fb38574843722c622ab1133

  • SSDEEP

    6144:pZB55OL7H7v7CVbHHYmGNZGcX2Se9Xlgual1QTGyr:bQL7H7v7C9mNZGg2Se91gZur

Score
10/10

Malware Config

Signatures

  • Agenttesla family
  • Detect ZGRat V1 1 IoCs
  • Zgrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2272-16-0x0000000002080000-0x00000000020D8000-memory.dmp
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections