Overview

overview

10

Static

static

10

2068-8-0x0...ry.exe

windows7-x64

2068-8-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2068-8-0x0000000000400000-0x0000000000440000-memory.dmp

  • Size

    256KB

  • MD5

    10d9c421904e20a044cb6eb60b07e346

  • SHA1

    b54eac113ae74ee47c374bfe77a123f038824150

  • SHA256

    553c405699ff0f680731fd9e40c1cf3917e3dccc837a83cf720f61712a327652

  • SHA512

    b1d7e19e4bc8699714917330f882c958fbc34b5862b25a00ba223a4e6716e628ae8a9579ffbe1b082fed5fc8ecbfab456b5d1cac01eaf4ad8f93f6ddf532625e

  • SSDEEP

    3072:Ml2u+euewbaqDjeevUWUB1UY5hxYZsdRCN:Ml2u+euewbaqDDsTBGXZsdE

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6240128422:AAGfewUxVcQqKio_MV181yAuk31JpsBcgy8/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2068-8-0x0000000000400000-0x0000000000440000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections