Extracted

• • Target

    tiKN.exe

  • Size

    947KB

  • MD5

    22bab7b02f10fe7d3671a89c00953c3f

  • SHA1

    65dcc4ee27bee5811355503dbb094cba0eea3ce5

  • SHA256

    73a8c667fdab47783d1dcf46cdabc116905bdc685c9cb6527c885d6d29889c3b

  • SHA512

    72a919568b0b95548148810516e02d10455d687198465c3c90ec12720e88e275e5c5cb9cf56f9c1896ccfa195928e04575dc93cee68e20ff54b5edcff6ebe683

  • SSDEEP

    24576:i1frjA+7G2OKFMKXIgxUYvieMHPNCap1k3I/pF:iMfKFD9xUupMHPxE

  Score

  10^/10

  agentteslacollectionkeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2