Extracted

• • Target

    EST-576014508099-45689899089.bat

  • Size

    1.1MB

  • MD5

    b88c28858317132ca967ad65b6ca7154

  • SHA1

    5fbde4bbe945f1cdb4a5de6bdd8392a2daeda521

  • SHA256

    57d916eab0857ac4c801805981105aa12540775ebd09f0abf53d8a8cde849c95

  • SHA512

    b4d12779497c32bc8926a687966135c226dee800af5cdfdff2eff43f82b0992170fee8e1af83e51eb05a9d47b81df6a2e5f9fcc14de202b00e27b4c978bf94b3

  • SSDEEP

    24576:+qDEvCTbMWu7rQYlBQcBiT6rprG8aXDuRhDQWCG:+TvC/MTQYxsWR7azuPcW

  Score

  10^/10

  agentteslacollectionkeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2