agenttesla | 916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665
Size

689KB
Sample

211018-v4gaxaehhn
MD5

52cd71bde1c747ac5eef94c0a71ffe70
SHA1

6d10a726bf14496b320851421a60cd4da5837adc
SHA256

916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665
SHA512

4ec9d9b4b5b4ae08663a936e76f10a45cd29a2d28126088f8b232548279350080dca06e08de1f1f2996496797f31c43ccb69f0214f0e81f69db1534bdc652e0e

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665.exe

Resource

win10-en-20211014

agenttesla keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot1923270472:AAFHljVp-f8Q5-X0iy70Vfe0aTch5THPa-U/sendDocument

Targets

- Target
  
  916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665
- Size
  
  689KB
- MD5
  
  52cd71bde1c747ac5eef94c0a71ffe70
- SHA1
  
  6d10a726bf14496b320851421a60cd4da5837adc
- SHA256
  
  916b446b19717fe163480a61d7de015fa27b4a06e352bb0b15b38ff87ce62665
- SHA512
  
  4ec9d9b4b5b4ae08663a936e76f10a45cd29a2d28126088f8b232548279350080dca06e08de1f1f2996496797f31c43ccb69f0214f0e81f69db1534bdc652e0e
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy