Overview

overview

10

Static

static

10

2660-10-0x...ry.exe

windows7-x64

2660-10-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2660-10-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    8182f081e623cd940644b43ba6728fd1

  • SHA1

    d6fe612dbd8785b4d1a3a4a10b413bd9996a4191

  • SHA256

    ea26deafbad581c6206d190d225e1264c76602f82c780ee64022d1d4f03fb939

  • SHA512

    7e92ec02d5ea3d62d91d8735fe01b550b32b497959d041e9aa8d437e9ae0a96cdfb00549101d46b07340e5cef72fe352bf41b8b17b35f1fbd5871779fc190db5

  • SSDEEP

    3072:kjtnGRt/7IBFM9rtTr1OXnpKBGtR1WFvzcq5m0E5J15NpRg9tB10:kjtn8t/7IBFMjZOXdDyQ6m0UJfRgb

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot7060813422:AAFqFKdMJlLvutqPAnHO4f8vnk2X1rQvsl0/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2660-10-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections