agenttesla | 810400151abc3b4720611355416884e908ea3bf489c5b3a70866a0b012afb04b | Triage

Sharing

General

Target

810400151abc3b4720611355416884e908ea3bf489c5b3a70866a0b012afb04bexe.exe
Size

638KB
Sample

231207-x22j6sef39
MD5

a660077cbfed754a0dcca39d62394482
SHA1

730639e3be1f23c2fc91146ea2b9255b512f64ba
SHA256

810400151abc3b4720611355416884e908ea3bf489c5b3a70866a0b012afb04b
SHA512

d06238133bad029eef2106ad614593cc1276b4eefd1ff01fcbf90273f1d99788261a046b6cd788b6e1559164a8af40289da059cd5820b5d99bd3173b2891cf36
SSDEEP

12288:SLrQaueH5qMEgpD6ZoYrOrkMw9Un2Xz53yoZAxtEJ/+d5cxdi2RnEzATUs99Cu6m:SLpqMtDQCkf9HG3c9REEQg9A05

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.abi0expertise.com
Port:
587
Username:
[email protected]
Password:
Najwa1949!
Email To:
[email protected]

Targets

- Target
  
  810400151abc3b4720611355416884e908ea3bf489c5b3a70866a0b012afb04bexe.exe
- Size
  
  638KB
- MD5
  
  a660077cbfed754a0dcca39d62394482
- SHA1
  
  730639e3be1f23c2fc91146ea2b9255b512f64ba
- SHA256
  
  810400151abc3b4720611355416884e908ea3bf489c5b3a70866a0b012afb04b
- SHA512
  
  d06238133bad029eef2106ad614593cc1276b4eefd1ff01fcbf90273f1d99788261a046b6cd788b6e1559164a8af40289da059cd5820b5d99bd3173b2891cf36
- SSDEEP
  
  12288:SLrQaueH5qMEgpD6ZoYrOrkMw9Un2Xz53yoZAxtEJ/+d5cxdi2RnEzATUs99Cu6m:SLpqMtDQCkf9HG3c9REEQg9A05
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2