Overview

overview

10

Static

static

10

2440-15-0x...ry.exe

windows7-x64

2440-15-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2440-15-0x0000000000400000-0x0000000000440000-memory.dmp

  • Size

    256KB

  • MD5

    adf9efd797bc8759f7d9bca5907f7f51

  • SHA1

    6ed9e7269a2cc092cd98eadd6d0abdef2d304d7e

  • SHA256

    8f159fa665508de51c1492157f2e766aeeb6c4ded943e0fd24767fae1dd08862

  • SHA512

    78dcf6b07acfa7c4074a443bfb5fe8fbe4ca06e5218ffaa9f12abdedf802b0cb70637f02c920a9f7e4e4c496dae010b2ecd80a47c0ec5718962137fc4e9a0a67

  • SSDEEP

    3072:emICLhZOOeu+ZuQMODIbWZiFnzYH5RGEVNBdrV:emICFZOOeu+ZuQd0bWZEnMVVb5

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot7177134832:AAFZbBRZvrMTexyCCRWrTRyGHf8Nct0rg7g/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2440-15-0x0000000000400000-0x0000000000440000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections