Extracted

• • Target

    decode_aa158ece3749d5549f3c6680e33b8bc17af98a17ab52c4ccb24f6ee5efad4fa7.exe

  • Size

    241KB

  • MD5

    ef31d3507f2d0107c818416a2c8c4ad3

  • SHA1

    3a692313771549ca8749b2f04629b39ea86a6beb

  • SHA256

    258ba2294b8ea19b823246636fa593aad790a7cd333eeec5510f9b3642937a0e

  • SHA512

    081b11292deb0b24e7a0e738d6926feaf36fee903edbc0c561ec57ed97cd3a38f30700046619ba99f6a74767d7cb79dd6bff780cdd5631cf2cfe1e15d5487872

  • SSDEEP

    3072:EGZtLz5zFd6FYtuGD/f/zquSorajkYoskZpI2kjF:EGZNxWFYtuGjXzhu72g

  Score

  10^/10

  agentteslacollectionkeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection
  behavioral1behavioral2