Extracted

• • Target

    d53dbe75a5f24c92bf54fa24fb1f354cadf3369134d6adc6670d669bdb65a519.exe

  • Size

    164KB

  • MD5

    4b4efbbb0e061f3e65ae99d798bf79b0

  • SHA1

    7d8f2970b7843b21316c54c80c1fc3fd3ff44912

  • SHA256

    d53dbe75a5f24c92bf54fa24fb1f354cadf3369134d6adc6670d669bdb65a519

  • SHA512

    ffd245c4d0fe3cae70204a08ec347da21c827ee8b50ff97132da77a79dce31edf81d70337f8a3d2980757129896777872b11912b8df0ee981a68b3ca8d1572da

  • SSDEEP

    3072:bBxW8XpZYzOuE1e7WelumAbMx+ZYcEHimZpKRX/etf2tLPl:lL0ye7W+ZxMEHimCZ/a2VP

  Score

  10^/10

  agentteslacollectionkeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection
  behavioral1behavioral2