Overview

overview

10

Static

static

10

2060-9-0x0...ry.exe

windows7-x64

2060-9-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2060-9-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    b037d8bc8a5a2b03a5c0d18dc15ca592

  • SHA1

    aa1ec0f191afe7b6c58887a60e5f5cf91b66166f

  • SHA256

    f489dc2703a0f2e962d879284facb8f29973ea7c836dc6ed706986c95f9001e7

  • SHA512

    427b6b37b72bdb0614c3decb416ad1a5ff37878a8fe58dbfd9e2ca9e4248d6eb4f2d5b08e9ea6278dbd77d6e35667490302296775e3215d4992d59c0fec819a7

  • SSDEEP

    1536:r2PaJY50kj6yuPrpbk5DYoOV2JHD/k0VLySgARAz5diak4iYT6DXtcW5reIZ3XzG:rEaJYb+ylVtz4zNFipXjpxBOvB4dfBk

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1147528752235024505/bvxKImZLMnQuC-ci0Tz609LQqo2rPe9W_3bVe5pcfaLXBir04mA3_Qa31Qu5lZdGm1FZ

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2060-9-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections