agenttesla | 600715af104a41db6d18d62a5980b87423f009eac1b1b96330e06e3cb3314637 | Triage

Submit
Reports

Overview

overview

Static

static

PO AA21C04...DF.exe

windows7_x64

PO AA21C04...DF.exe

windows10_x64

Sharing

General

Target

PO AA21C04U3101-MTXGA6_PDF.exe
Size

611KB
Sample

210408-6lggwnmy9a
MD5

591c96d331d55c84ccb817c8957b63dd
SHA1

cf75bba79c7f3290936e2d00f86f4efd4aca7deb
SHA256

600715af104a41db6d18d62a5980b87423f009eac1b1b96330e06e3cb3314637
SHA512

05180607fe0450fbf81e1f67b7ff8b8cf88f0a6541a3df015c466de4c8e516c51b4ccc446634e1ab60aeee099d32375316a0d7e9f69be773caae676a85e4426b

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

PO AA21C04U3101-MTXGA6_PDF.exe

Resource

win7v20201028

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

PO AA21C04U3101-MTXGA6_PDF.exe

Resource

win10v20201028

agenttesla keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.nke.com.my
Port:
587
Username:
godfrey@nke.com.my
Password:
Godfrey@2021

Targets

- Target
  
  PO AA21C04U3101-MTXGA6_PDF.exe
- Size
  
  611KB
- MD5
  
  591c96d331d55c84ccb817c8957b63dd
- SHA1
  
  cf75bba79c7f3290936e2d00f86f4efd4aca7deb
- SHA256
  
  600715af104a41db6d18d62a5980b87423f009eac1b1b96330e06e3cb3314637
- SHA512
  
  05180607fe0450fbf81e1f67b7ff8b8cf88f0a6541a3df015c466de4c8e516c51b4ccc446634e1ab60aeee099d32375316a0d7e9f69be773caae676a85e4426b
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy