agenttesla | 49429dd2dac5b93116966a2d310bb53c008d8d5f4df41e33a1d78cbd37e34c61 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1704-11-0x...ry.exe

windows7-x64

1704-11-0x...ry.exe

windows10-2004-x64

Sharing

General

Target

1704-11-0x0000000000400000-0x0000000000440000-memory.dmp
Size

256KB
Sample

240220-kef9haee52
MD5

9e458800fa5a500f00cc8a3e8dadab31
SHA1

15594abf9d6e711d0886dfce67dea5e3d4fe508d
SHA256

49429dd2dac5b93116966a2d310bb53c008d8d5f4df41e33a1d78cbd37e34c61
SHA512

a7f597b072cc8099d628a3adf55f5756866427b18410cd270511310a9588865e8d9a941500ef27050e71fb00b5badea9aecffff7213fd71c651cfdb295fd67b9
SSDEEP

3072:lkDULTrIAOeudzvjYiIEoq4dbKMq5nBAKBiNI:lkDULTrIAOeudzbYvqkKM4AK4

Score

10^/10

agenttesla

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1704-11-0x0000000000400000-0x0000000000440000-memory.exe

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1704-11-0x0000000000400000-0x0000000000440000-memory.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot6888405524:AAFs03Xpn0T6cMtLnkT-8XOF1Lm2jt7RNyI/

Targets

- Target
  
  1704-11-0x0000000000400000-0x0000000000440000-memory.dmp
- Size
  
  256KB
- MD5
  
  9e458800fa5a500f00cc8a3e8dadab31
- SHA1
  
  15594abf9d6e711d0886dfce67dea5e3d4fe508d
- SHA256
  
  49429dd2dac5b93116966a2d310bb53c008d8d5f4df41e33a1d78cbd37e34c61
- SHA512
  
  a7f597b072cc8099d628a3adf55f5756866427b18410cd270511310a9588865e8d9a941500ef27050e71fb00b5badea9aecffff7213fd71c651cfdb295fd67b9
- SSDEEP
  
  3072:lkDULTrIAOeudzvjYiIEoq4dbKMq5nBAKBiNI:lkDULTrIAOeudzbYvqkKM4AK4
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy