Extracted

• • Target

    6fa33275b4f3de73faabdd5dc084f0c9

  • Size

    1.1MB

  • MD5

    6fa33275b4f3de73faabdd5dc084f0c9

  • SHA1

    8b624a452820e2949eec05c2e16c6cb0cd685c12

  • SHA256

    54997c9767d784fc3d566238940f84541c4b614ec794aceeb84d2bb8a4104bf5

  • SHA512

    3854b0e82dae57b39d4cdbe4f82b044b08c618975878f68e2371e8de7df20c274a67187d1b02b1fcfe0153a195e6884bdba1bd23f55a0f315fe6823bb68cccbf

  • SSDEEP

    12288:rKEvPYypPP2JNU20O6iJ+K8/8qkiFhG7SYLRWhwB3H3I/swqHpB9hDsC07tHNHVl:eU2GisKophkbLR5B33VLHDfDJIx+ED

  Score

  10^/10

  agentteslakeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • AgentTesla payload

  • Suspicious use of SetThreadContext

  behavioral1behavioral2