Overview

overview

10

Static

static

10

4160-26-0x...ry.exe

windows7-x64

4160-26-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4160-26-0x0000000000400000-0x0000000000444000-memory.dmp

  • Size

    272KB

  • MD5

    8c7dc1f3acbfb2ab7d0e490634dd943f

  • SHA1

    1688aa232dd81a3272d133b14a5c98fe0ca767ce

  • SHA256

    7586867e62ae27c5757b8d72a3365b40d5fb9fabb590203984595f66b1e9665b

  • SHA512

    2de95b215903cec34d2933c50fe38b96e1c3e1cdcee82a45a46780670b5fa407569c20e0cdb0c5a976db61b785b7340fe94161fb3b72507e0da99bcdf30a6414

  • SSDEEP

    6144:49dcn6eCOZ0dIDo51koYK/IASXMEZ++H:3n6eCOZ0dIDo51koV/I/8

Score
10/10
agenttesla

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6852245174:AAHgk_9s-tH6YNacTaCnQz56uJMggI0fZDw/

Signatures

  • Agenttesla family
    agenttesla
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4160-26-0x0000000000400000-0x0000000000444000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections