General
-
Target
2244-11-0x0000000000B00000-0x0000000000B42000-memory.dmp
-
Size
264KB
-
MD5
0895536cebbcb5569733cedd336a3152
-
SHA1
b962d8e869094968606bfcac5ef44932568e49ab
-
SHA256
1e5563caf39eab4389d4ed8b92d0d278a1d85f608d7aa0dd31d8d1fcb6d24061
-
SHA512
cfa127c9bb0729c719c3e8bd704e042701eb5de96d72a61979966c8dfa8094ca5a75e47d204189bd3c39439015c8e7a9bba72ab202ec43f7467fa520d64c2be2
-
SSDEEP
3072:X04y6+6GKGcZJ21A9bXBJVzcwJq8Dgj54CcXZ8wepBt3:XK6+6GKGcZJh9lJGwk8DgoXZ8p
Score
10/10
Malware Config
Extracted
Family
agenttesla
C2
https://api.telegram.org/bot7065054355:AAGvKozyIFTruitkksV45RlLGqriLqyMLhs/
Signatures
-
Agenttesla family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2244-11-0x0000000000B00000-0x0000000000B42000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections