Overview

overview

10

Static

static

10

2436-28-0x...ry.exe

windows7-x64

2436-28-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2436-28-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    73f8e1f4e7c250f2b1308f00ea27b25e

  • SHA1

    a765a8e5745cdac7472d5b007d89162d31813d6e

  • SHA256

    3e319a8b771d0ff0178259893dd39d78de1a5a526da5a0de53fc50c88ede85d9

  • SHA512

    b123e9d5bc19013bdf27b1179ab1d14a39a0f0efb5fb2404bfc05ba3f6adf4047c598a72a7da2c9f7050047505f567642eb2471f1f7b443cc230d2ce9159506d

  • SSDEEP

    3072:zjtoOJdPbdxd6gRgIwZr9ZNC5jHyyyyyyyyyyyyyyyyyyyyyqyyyyyyyyyyyy9ym:zjtoEdPbdxd63r9USBSmWQLvenBE

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot7033508944:AAH7L9s0SGF-SvntnXPT9jk41drQhGs3fYU/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2436-28-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections