agenttesla | 12a902e9e73f77a5e28f18900342d8425c3464466835a1b39c7fd073501e4ef8 | Triage

Submit
Reports

Overview

overview

Static

static

3

369fd4547b...48.exe

windows7-x64

369fd4547b...48.exe

windows10-2004-x64

Sharing

General

Target

369fd4547b0f650c008591f843f69648
Size

760KB
Sample

231231-pzjycabbck
MD5

369fd4547b0f650c008591f843f69648
SHA1

3e3689bd1161dd26728904d112f2fc6cbfa2058e
SHA256

12a902e9e73f77a5e28f18900342d8425c3464466835a1b39c7fd073501e4ef8
SHA512

b1f77948303d6314c1db1b57e80bb2c9044d2824196d498b53bfea731ccf48d2bd7214f232db1665426a1ee5434cbe4a6cb489a0e44fc2eff5287955a6d0c74b
SSDEEP

12288:QEPS2iNeHK7zxJ/3DSJOkU0LRrrh2aBKuHO+U5I54q6CpEEqh34s0vPKJ1+NNMcW:QEK1bT3pk9LaaBRHO+U+F6SC0vPKJE7v

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

369fd4547b0f650c008591f843f69648.exe

Resource

win7-20231215-en

agenttesla keylogger spyware stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

369fd4547b0f650c008591f843f69648.exe

Resource

win10v2004-20231215-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.barbanoarredamenti.it
Port:
587
Username:
[email protected]
Password:
Barbano1717!
Email To:
[email protected]

Targets

- Target
  
  369fd4547b0f650c008591f843f69648
- Size
  
  760KB
- MD5
  
  369fd4547b0f650c008591f843f69648
- SHA1
  
  3e3689bd1161dd26728904d112f2fc6cbfa2058e
- SHA256
  
  12a902e9e73f77a5e28f18900342d8425c3464466835a1b39c7fd073501e4ef8
- SHA512
  
  b1f77948303d6314c1db1b57e80bb2c9044d2824196d498b53bfea731ccf48d2bd7214f232db1665426a1ee5434cbe4a6cb489a0e44fc2eff5287955a6d0c74b
- SSDEEP
  
  12288:QEPS2iNeHK7zxJ/3DSJOkU0LRrrh2aBKuHO+U5I54q6CpEEqh34s0vPKJ1+NNMcW:QEK1bT3pk9LaaBRHO+U+F6SC0vPKJE7v
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy