agenttesla | 6591c29b286c7616db7fb523218418b76f3f12261cf0e5fd3d37d41a126e9ae9 | Triage

Sharing

General

Target

6591c29b286c7616db7fb523218418b76f3f12261cf0e5fd3d37d41a126e9ae9
Size

1.1MB
Sample

240429-bdbsysdh5z
MD5

30a372be011d5db5d55c0b2b810ebf69
SHA1

bd62ff9ea72fd7635309eea03af1063d9c96fdc1
SHA256

6591c29b286c7616db7fb523218418b76f3f12261cf0e5fd3d37d41a126e9ae9
SHA512

ae92274ec298e75122364fbf9d4567e99cefaa027af42198e0149881ebc82156a7844cb448eb7557e23867a8bd325f006f3033166983972bffee6b416f7e8884
SSDEEP

24576:JITMvRFhRRbNWoCfkYSEH3OqtwIuX5m8klyFoBkkAr:JITYbNbNWo4kSH3OqtwI+mtAan

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  6591c29b286c7616db7fb523218418b76f3f12261cf0e5fd3d37d41a126e9ae9
- Size
  
  1.1MB
- MD5
  
  30a372be011d5db5d55c0b2b810ebf69
- SHA1
  
  bd62ff9ea72fd7635309eea03af1063d9c96fdc1
- SHA256
  
  6591c29b286c7616db7fb523218418b76f3f12261cf0e5fd3d37d41a126e9ae9
- SHA512
  
  ae92274ec298e75122364fbf9d4567e99cefaa027af42198e0149881ebc82156a7844cb448eb7557e23867a8bd325f006f3033166983972bffee6b416f7e8884
- SSDEEP
  
  24576:JITMvRFhRRbNWoCfkYSEH3OqtwIuX5m8klyFoBkkAr:JITYbNbNWo4kSH3OqtwI+mtAan
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan