General

  • Target

    2596-9-0x0000000000400000-0x0000000000442000-memory.dmp

  • Size

    264KB

  • MD5

    7bb1ba8824ef4b46d481104c12347d27

  • SHA1

    46d28aa70fd1ee510e2505b77b2de9b7d9dd3a00

  • SHA256

    61272bbdea79a85a05cb5acef3870da6a8f879923c2700352de741c868a87137

  • SHA512

    b34db8ea7eb1b93c90dbaf4f3b67ae5770d0d7443c80704da9db26faaf1f461404909078354bd6806f73c2bd38a2ae51a235c56920cfef753c0c7b4d73f99828

  • SSDEEP

    3072:h0B5ID3nXvfXsJAeVc8O7q4WbdCdFKO0sA85SomSxtRCw/u:aB5ID3nXvfXsOeVc8poKLsAWmS/

Score
10/10

Malware Config

Extracted

Family

agenttesla

C2

https://discord.com/api/webhooks/1245772750543392861/L_K6ji78sH3OjwbjjhOlGDPtvhmfP1hWQzbrjN1euIGdn5Bba9rCRUTJcaaEFLAjxY8o

Signatures

  • Agenttesla family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2596-9-0x0000000000400000-0x0000000000442000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections