agenttesla | dffee586afef4a31d3d2719eab0633ab801a369bf78e49a20d2fe8627cf58a8c | Triage

Submit
Reports

Overview

overview

Static

static

OPOOOO.exe

windows7_x64

OPOOOO.exe

windows10-2004_x64

Sharing

General

Target

dffee586afef4a31d3d2719eab0633ab801a369bf78e49a20d2fe8627cf58a8c
Size

626KB
Sample

220521-ntm75shbhp
MD5

b65fc96ff3d6a8bd3185401dc129dc9f
SHA1

787e47816cf3c8f23f474b1ea0918057b55f39aa
SHA256

dffee586afef4a31d3d2719eab0633ab801a369bf78e49a20d2fe8627cf58a8c
SHA512

65aaa68e9dcc7d246afe4507f7b4658a284ebb409ead880c55ad685d087cf442994d16fa1ad1535ffcddacece57ecfb866b7face3ed226292d895cd143b07f1e

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

OPOOOO.exe

Resource

win7-20220414-en

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

OPOOOO.exe

Resource

win10v2004-20220414-en

agenttesla keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.blc.com.np
Port:
587
Username:
[email protected]
Password:
bhuramal

Targets

- Target
  
  OPOOOO.exe
- Size
  
  716KB
- MD5
  
  0a7e892a684a0953f1aeee6135029021
- SHA1
  
  08db31eba73e088d28813bed7a1175b38a62c5f6
- SHA256
  
  25fc942b81a074fe6b40b2f817fb87d28a54949bf604e54c414c890a351b83e4
- SHA512
  
  514db6a241cfbbd94afe8acd049b32c99b10ffd46e52092def7735fec085a12fbf55b2b9dc4bdf8c79a60033bbefdca0f2346a9c0d713f33e3a465ec89abb465
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy