agenttesla | 35bf6a470d0991a5ae3ccffab1c7d48b9fc72fe540ac7bdb26c636e39ea9e0ce | Triage

Submit
Reports

Overview

overview

Static

static

REQUEST A ...RM.exe

windows7_x64

REQUEST A ...RM.exe

windows10_x64

Sharing

General

Target

REQUEST A QUOTE FORM.exe
Size

936KB
Sample

210727-l3dza6hbxa
MD5

b38951e206b97598f43f14093f010277
SHA1

0f9abd35a624f7eac1a971d4dbc8b31e0811adeb
SHA256

35bf6a470d0991a5ae3ccffab1c7d48b9fc72fe540ac7bdb26c636e39ea9e0ce
SHA512

720f7591ccfc8d0867883b9a7cc68b4616a1d7a6a3067e432b5d370c48f912782b102f233459ece05796d1b53ffd51ac59ab5d103e1631da19651304fc5321f0

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

REQUEST A QUOTE FORM.exe

Resource

win7v20210410

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

REQUEST A QUOTE FORM.exe

Resource

win10v20210408

agenttesla keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.privateemail.com
Port:
587
Username:
chamara.kuruppu@organigram-ca.icu
Password:
Neways@123

Targets

- Target
  
  REQUEST A QUOTE FORM.exe
- Size
  
  936KB
- MD5
  
  b38951e206b97598f43f14093f010277
- SHA1
  
  0f9abd35a624f7eac1a971d4dbc8b31e0811adeb
- SHA256
  
  35bf6a470d0991a5ae3ccffab1c7d48b9fc72fe540ac7bdb26c636e39ea9e0ce
- SHA512
  
  720f7591ccfc8d0867883b9a7cc68b4616a1d7a6a3067e432b5d370c48f912782b102f233459ece05796d1b53ffd51ac59ab5d103e1631da19651304fc5321f0
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy