agenttesla | c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3 | Triage

Submit
Reports

Overview

overview

Static

static

c02aaa0ead...a3.exe

windows7-x64

c02aaa0ead...a3.exe

windows10-2004-x64

Sharing

General

Target

c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3
Size

306KB
Sample

240428-bdp1kscg6w
MD5

4a7c31e21d1427b7fdc393a86d91d53f
SHA1

f60001057233defe1ddcca5d9037c722dd59d3d3
SHA256

c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3
SHA512

8f4ca7f293c3c2318aea4f2d7d0783195b4d2b10fae455cba270b84b7eec1eb438f7c61f2c2e5e744db876615f10d66bee3ca14d995b24c06631c8dc59a8cbda
SSDEEP

6144:UTJNtqCaS6u5Qo9L32p9vrUK/I513j6nlHRggiui:mqCaS6umopiwj5jQLgbui

Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan

Static task

static1

zgrat agenttesla

4 signatures

Behavioral task

behavioral1

Sample

c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3.exe

Resource

win7-20240419-en

agenttesla zgrat keylogger rat spyware stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3.exe

Resource

win10v2004-20240419-en

agenttesla zgrat keylogger rat spyware stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.premiumcapital.com.ng
Port:
587
Username:
b.popoola@premiumcapital.com.ng
Password:
Public02benny
Email To:
veebrian88@gmail.com

Targets

- Target
  
  c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3
- Size
  
  306KB
- MD5
  
  4a7c31e21d1427b7fdc393a86d91d53f
- SHA1
  
  f60001057233defe1ddcca5d9037c722dd59d3d3
- SHA256
  
  c02aaa0ead5efd669520f7836d89a18a085cf8685d4948d5b8d0567093a900a3
- SHA512
  
  8f4ca7f293c3c2318aea4f2d7d0783195b4d2b10fae455cba270b84b7eec1eb438f7c61f2c2e5e744db876615f10d66bee3ca14d995b24c06631c8dc59a8cbda
- SSDEEP
  
  6144:UTJNtqCaS6u5Qo9L32p9vrUK/I513j6nlHRggiui:mqCaS6umopiwj5jQLgbui
Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

zgratagenttesla

behavioral1

agentteslazgratkeyloggerratspywarestealertrojan

behavioral2

agentteslazgratkeyloggerratspywarestealertrojan

© 2018-2024

Terms | Privacy