agenttesla | 10d9fc7d1dd979a6379c11c3403499837f2c850bd535fb0212388821cd963c8f | Triage

Sharing

General

Target

AbdiCheets.rar
Size

713KB
Sample

231201-zthhfagb49
MD5

78e6b7f54df30a2f3d6cc0ad1939f150
SHA1

97177f52a1dea976870e12f6c883b2d146d58d86
SHA256

10d9fc7d1dd979a6379c11c3403499837f2c850bd535fb0212388821cd963c8f
SHA512

a53e8115168b96b635aec112f926ffdc304f025e0de2b867d6b61a0832fda46c3c36675f75ddbc50767094cd878c9dfc33988a13ba6033025cb00df1f8cdfbcc
SSDEEP

12288:xBbWZ4LBVxT4fCUGl0m/5o+xA0sI1ASnb9YlzDxWf7m08hn6NuyvlYy7TK+:DaZoMgl0gYFI1Aq9aoPqnoZ9Yp+

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  AbdiCheets/Abdi Cheats Recoil Control.exe
- Size
  
  229KB
- MD5
  
  5470805b881245274d8feb5718fcd504
- SHA1
  
  2a753f22209c308108acf24e81354b084f3e04e9
- SHA256
  
  558ffc608b511d3526f46869a18f004dac73e85277eed1bbb659327e1614cf22
- SHA512
  
  3a7599b2545d140fd0c988b71601d3bd6c4b776b4fb5db1068e958bebc9614b48da036c5542549c681e659bbc71d7273c6be113273558e2a3ef09230fe59f97d
- SSDEEP
  
  1536:kDiyquxOZaxdMoptgL7aAP+xdMXptgLIvAm:kMo0aWsMX0+J
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan