Overview

overview

10

Static

static

10

1044-0-0x0...ry.exe

windows7-x64

1044-0-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1044-0-0x0000000000400000-0x0000000000440000-memory.dmp

  • Size

    256KB

  • MD5

    18d50a1e0ef9110202a536e70d1bf082

  • SHA1

    c0fd6bc0ec3747b93fa470b846bd9071d84de25e

  • SHA256

    06024bcb7dd5500789d1b5d7db6076aa09bfee1e7c3126731ccbb366c6e35870

  • SHA512

    9c318d8b4c979459e6af5e2ac9e7bfd7b4d8885d130ee02a1e12eaca23409a51f5ca6d06cf07bba7ccdc64f5e2807a784dfba33dd0a53b6d8b6b5ebb1b2f6384

  • SSDEEP

    3072:LyULl0euueOfrLK6oT9wGja859tdChyxZ:LyULl0euueOfrLdoyyaQdCc

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot7043330881:AAFq19dRSS-89_wbwEvbuucof5Z3tCHG2NY/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1044-0-0x0000000000400000-0x0000000000440000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections