agenttesla | aa1726ec4e7bc607566c3c181498b479506c40449f69319a7bf0981f4e052bfe | Triage

Submit
Reports

Overview

overview

Static

static

Scan docs.exe

windows7_x64

Scan docs.exe

windows10_x64

Sharing

General

Target

Scan docs.exe
Size

926KB
Sample

210624-1w1n9ctnrx
MD5

94159f5873c12cd7ee9b2ab1a0123afc
SHA1

16bb42d7b6ec5536c06c4d7e424633940f61263d
SHA256

aa1726ec4e7bc607566c3c181498b479506c40449f69319a7bf0981f4e052bfe
SHA512

e815a803e83c7b1e8584a043286503842c8c79b4be7193b92950a0df637be661b53de4bf473278b5c038097af9fd2213908a5b90527d232205d1e6eb226d11b5

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

Scan docs.exe

Resource

win7v20210408

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Scan docs.exe

Resource

win10v20210408

agenttesla keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.atlmexco.com
Port:
587
Username:
maksat@atlmexco.com
Password:
Ma1301

Targets

- Target
  
  Scan docs.exe
- Size
  
  926KB
- MD5
  
  94159f5873c12cd7ee9b2ab1a0123afc
- SHA1
  
  16bb42d7b6ec5536c06c4d7e424633940f61263d
- SHA256
  
  aa1726ec4e7bc607566c3c181498b479506c40449f69319a7bf0981f4e052bfe
- SHA512
  
  e815a803e83c7b1e8584a043286503842c8c79b4be7193b92950a0df637be661b53de4bf473278b5c038097af9fd2213908a5b90527d232205d1e6eb226d11b5
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy