Overview

overview

10

Static

static

10

2124-4-0x0...ry.exe

windows7-x64

2124-4-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2124-4-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    76ce69d48d88442f80d00956bad9f65f

  • SHA1

    03255351fd052c003db29addeb1040a077320368

  • SHA256

    96550b66ba295ecedd75d3c29fa20f8e83928267988ba253951e841eb6b3c193

  • SHA512

    573995ac213f50fb26e1ba3b1957ba746277b75642cbd9f82b3fbcc361b9e6b4284067ce0039fad6452701158869c7cc3fdc3b1908f055fdd347ec64721d7ae0

  • SSDEEP

    3072:HsGEAKC+SmC3g4fVKc4fbNvTGpo2bP0v5pqBqNNf2uQ:MGEAKC+SmC3g4fV9YpyoecCBqL

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6358233187:AAEyoOd9rO1CDVVHfYgk7lLwkYwWZBhWpCo/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2124-4-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections