General
-
Target
2360-28-0x0000000000400000-0x0000000000444000-memory.dmp
-
Size
272KB
-
MD5
d8f3a16b605fe7decb31e70df3f7d583
-
SHA1
4bf3ee1a2392a72175972b037971780149e3d5b9
-
SHA256
35ea616f119edf19617f28caf9f3b476346a3d2f05307dda8eaf0da648d12414
-
SHA512
d2aaa84915966a4a91bcbda924ceddbb6d115586c4b58739a643f08d82f05d0f515e1a5173ab9b802d74c9c710d2f8ffd3fac3789f11ce2fd7dc335297825aef
-
SSDEEP
3072:iotNJfi5FZdJEC1HkQeiJHerghQlpf5szvToFfQ5zo:iotNli5FZdJEC1EQeKggOp4ToN
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot6482470028:AAGZWx1BlNfwbuuivGJ_bo3pyIfyxVKC0hI/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2360-28-0x0000000000400000-0x0000000000444000-memory.dmp
Headers
Sections