agenttesla | 3e144aa347f286c75f9ffe827f6239652065f468794bf567e47d87e29c3ea53b | Triage

Submit
Reports

Overview

overview

Static

static

INVOICE34_...15.exe

windows7_x64

INVOICE34_...15.exe

windows10_x64

Sharing

General

Target

INVOICE34_56730015.exe
Size

801KB
Sample

210511-ekbb5evfxe
MD5

ad623a158d7f37f547dee2ba01646c0d
SHA1

3d55829677ffb85e1be6feded9bec255163fe250
SHA256

3e144aa347f286c75f9ffe827f6239652065f468794bf567e47d87e29c3ea53b
SHA512

756d907400810a392d43a7a87a44a7331383463f6a0b6b4608f83542736436d9665b5e3d6e2fffebd532aa43680d339baa344d60d7274dd26ef2f3f64f4dba9c

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

INVOICE34_56730015.exe

Resource

win7v20210408

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

INVOICE34_56730015.exe

Resource

win10v20210410

agenttesla keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.dadabhoy.edu.pk
Port:
587
Username:
ghulam.sarwar@dadabhoy.edu.pk
Password:
Dadabhoy.456

Targets

- Target
  
  INVOICE34_56730015.exe
- Size
  
  801KB
- MD5
  
  ad623a158d7f37f547dee2ba01646c0d
- SHA1
  
  3d55829677ffb85e1be6feded9bec255163fe250
- SHA256
  
  3e144aa347f286c75f9ffe827f6239652065f468794bf567e47d87e29c3ea53b
- SHA512
  
  756d907400810a392d43a7a87a44a7331383463f6a0b6b4608f83542736436d9665b5e3d6e2fffebd532aa43680d339baa344d60d7274dd26ef2f3f64f4dba9c
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy