agenttesla | ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440 | Triage

Sharing

General

Target

ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
Size

829KB
Sample

231205-vjb6fscg41
MD5

5d1c9a1d3cf698d5388abbe8eeeb6aff
SHA1

0da3a5217e7072627b6111195933531869efc6a5
SHA256

ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
SHA512

2dadc4a503cea21a4c669e1006a1deb15223a67aa8bcc4017c36c2ce9713fd2f508066e8bd3ad748e3ea03511109f08ef4baee1b293e1152904de750bb52233f
SSDEEP

12288:uWVrltW8G34/uK45+po2WLfpjF+ZDMlwtMrj9pQkS5uy3x9IUONe:5o34/up+pJspMZwltVS1

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
premium162.web-hosting.com
Port:
587
Username:
[email protected]
Password:
Success4sure2day10@
Email To:
[email protected]

Targets

- Target
  
  ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
- Size
  
  829KB
- MD5
  
  5d1c9a1d3cf698d5388abbe8eeeb6aff
- SHA1
  
  0da3a5217e7072627b6111195933531869efc6a5
- SHA256
  
  ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
- SHA512
  
  2dadc4a503cea21a4c669e1006a1deb15223a67aa8bcc4017c36c2ce9713fd2f508066e8bd3ad748e3ea03511109f08ef4baee1b293e1152904de750bb52233f
- SSDEEP
  
  12288:uWVrltW8G34/uK45+po2WLfpjF+ZDMlwtMrj9pQkS5uy3x9IUONe:5o34/up+pJspMZwltVS1
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2