agenttesla | 445429ca7761e3daa30c866441e49f9d74a90129c4c514e8aad4a6a26fe63f14 | Triage

Submit
Reports

Overview

overview

Static

static

3

0a3fa3aecf...6e.exe

windows7-x64

0a3fa3aecf...6e.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

0a3fa3aecf069fbb8a2c009b1bf7ad6e
Size

777KB
Sample

231230-bzxmjsecc2
MD5

0a3fa3aecf069fbb8a2c009b1bf7ad6e
SHA1

99af922c5a6777b57bf5f90b6c9874e56c4a5c80
SHA256

445429ca7761e3daa30c866441e49f9d74a90129c4c514e8aad4a6a26fe63f14
SHA512

6e0689780c63dd8724dd9673c8c7b1f38978672bf2f2afc674091f9a1e1c284eda2144365c6ebb6e67bfa261acd66199ab9813de4efa23747f6eca34d042e7a7
SSDEEP

24576:QHHykC9mIzUewRTCByvgKOYjVcClBynK4:OjVynn

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0a3fa3aecf069fbb8a2c009b1bf7ad6e.exe

Resource

win7-20231215-en

agenttesla keylogger spyware stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0a3fa3aecf069fbb8a2c009b1bf7ad6e.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.amotoindia.com
Port:
587
Username:
[email protected]
Password:
aiLFsls9

Targets

- Target
  
  0a3fa3aecf069fbb8a2c009b1bf7ad6e
- Size
  
  777KB
- MD5
  
  0a3fa3aecf069fbb8a2c009b1bf7ad6e
- SHA1
  
  99af922c5a6777b57bf5f90b6c9874e56c4a5c80
- SHA256
  
  445429ca7761e3daa30c866441e49f9d74a90129c4c514e8aad4a6a26fe63f14
- SHA512
  
  6e0689780c63dd8724dd9673c8c7b1f38978672bf2f2afc674091f9a1e1c284eda2144365c6ebb6e67bfa261acd66199ab9813de4efa23747f6eca34d042e7a7
- SSDEEP
  
  24576:QHHykC9mIzUewRTCByvgKOYjVcClBynK4:OjVynn
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

© 2018-2025

Terms | Privacy