agenttesla | 8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac | Triage

Submit
Reports

Overview

overview

Static

static

8b6f40d327...ac.exe

windows7_x64

8b6f40d327...ac.exe

windows10-2004_x64

Sharing

General

Target

8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac
Size

758KB
Sample

220414-pw4hkscba3
MD5

c6e01fce47d2f5e46ddb65f389d48e35
SHA1

af7b46434020214b9337dcb71a6174780610b30a
SHA256

8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac
SHA512

1f9cfe322672ea30d752b20761c0968fd8c20742608ea70cf7fc71eda19ae729e1a085fe1eac450dcb0bcb665f4c2648d24c592267019bef01d3aa311f511e5a

Score

10^/10

agenttesla metastealer keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac.exe

Resource

win7-20220311-en

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac.exe

Resource

win10v2004-20220331-en

agenttesla metastealer keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

C2

http://malec-pompy.ml/a/inc/ed981c40cedc75.php

Targets

- Target
  
  8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac
- Size
  
  758KB
- MD5
  
  c6e01fce47d2f5e46ddb65f389d48e35
- SHA1
  
  af7b46434020214b9337dcb71a6174780610b30a
- SHA256
  
  8b6f40d327d8f0c89cb9223840a3ae15c06bd4b7ae43a613ea619a04ba2441ac
- SHA512
  
  1f9cfe322672ea30d752b20761c0968fd8c20742608ea70cf7fc71eda19ae729e1a085fe1eac450dcb0bcb665f4c2648d24c592267019bef01d3aa311f511e5a
Score

10^/10

agenttesla keylogger spyware stealer trojan metastealer
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Meta Stealer Stealer
  Meta Stealer steals passwords stored in browsers, written in C++.
  stealer metastealer
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslametastealerkeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy