General
-
Target
2836-8-0x0000000000400000-0x0000000000440000-memory.dmp
-
Size
256KB
-
MD5
e64f05a34e73722c3200b235453a624c
-
SHA1
44261bea4ba3fb36a0614b898bb57d985ee7ce5d
-
SHA256
b8275f4c8b5e285141f3b92f81879796d2a4b00cf5ec56d3bf85f4f942f3fa59
-
SHA512
bf3c99c1fe1191b00e6301eebd345014ce6d85640e3f1ac1929e0bd6893fd018e2e9e33c1b85b55d4b159a5c50bda2fd5cf40351fbde985ccc95c0cae1579bff
-
SSDEEP
3072:PMIC9GBMF+X/HX2y3bhgrKsKTpleEgk55QzVFxHP:PMIC9WMFu/HX2yk8pwEgVzVX
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6107178761:AAHgabxzERKwr-kmuctjwK7hlO5aXFWx-vU/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2836-8-0x0000000000400000-0x0000000000440000-memory.dmp
Headers
Sections