Overview

overview

10

Static

static

10

884-12-0x0...ry.exe

windows7-x64

884-12-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    884-12-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    ded0755295acccd97a8f9bda90509cea

  • SHA1

    87e11a26cc03a2691eefd76ba56529fa86e2f4f5

  • SHA256

    acbe53ffe40f47bf5d04bda84b53253fa179cce9d84b2e73d389778ac412b556

  • SHA512

    184db79cc94e5ec01be9f1310be63bddcfa9c914638dae7016a26cc061a103e9728653ad993406d436d399ee763ecd8850e1f4ea6d722806b8ac9f9899c62407

  • SSDEEP

    3072:7OCgAIoAgkwolCOxCuhTzPaoVbKG2ETW2D5VwrXJw1/U:7OrAIoAgElC0VZejG2ETW2QrXap

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6981982105:AAGJZG7U4ELI-QLExHS4a6AlsLp__P5_opc/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 884-12-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections