Extracted

• • Target

    0e2c9248cc88052d8fdd8d4b9399772b

  • Size

    314KB

  • MD5

    0e2c9248cc88052d8fdd8d4b9399772b

  • SHA1

    9846115f79d650bfc25803e7e521259882822d61

  • SHA256

    b38ba88413ce3a2d4519969c92be6cf9f9e6b75c32fc80aa1b5b8336836c23e4

  • SHA512

    0fcccda878b9c5b8c68d77bce2f45fe605c6f71b208e8a0e421d94f7b501c7cd9aba916a18eea4a8ffaff178e7f34f464c1140f51ae8cb421a2b5a67534e9f83

  • SSDEEP

    6144:zLTfGueEAmg+NEo5YS01+7uAz1c0xaDHmI7qY:jfGbEAmDv2S0IIGIt

  Score

  10^/10

  agentteslakeyloggerspywarestealertrojancollection

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • AgentTesla payload

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2