General
-
Target
2672-28-0x0000000000400000-0x0000000000442000-memory.dmp
-
Size
264KB
-
MD5
c6cd7b53825511403baadf0c0e9492be
-
SHA1
0782b1dc45d746d2ebfd64c9855dc302736fcd7c
-
SHA256
abb1a4fada754ea454c44441e83e2285cc0e6fedc9d4a0efe712383eb1fb3d14
-
SHA512
83f696ab81f3902cdededd4c0a10df69ad7586e54fa31ed955590bf9cd80c00168e08d97668027adc1fa2d471e860af02c07b0c3db0f82e699b7c6ce60e99488
-
SSDEEP
3072:4tgco8gNYygWFX5KRgihfe/YTCyh5OdWjJ5/C:4tgco8gNYygGXMWVykWjf
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot7079001145:AAFUmbtnKJ_-Y94Vi3Jf0SpEGlkYUg-JXhk/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2672-28-0x0000000000400000-0x0000000000442000-memory.dmp
Headers
Sections