agenttesla | 8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831 | Triage

Submit
Reports

Overview

overview

Static

static

5

8f291e6386...31.exe

windows7-x64

8f291e6386...31.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831
Size

1.2MB
Sample

240224-bgp5rade63
MD5

473e41f5cbd714b3c04cf897803a330b
SHA1

4b7cfbc87d878587f4bc34541fd319c46cea2bca
SHA256

8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831
SHA512

8be6a593734bd265830e8a0053c875655b88148e6f54a8bdf86d9309504451ac93121430385879249e5058f7de0c5e9c81fc1edf0c0fbdcbb1407452bbb1a3f8
SSDEEP

24576:QqDEvCTbMWu7rQYlBQcBiT6rpFd+zhLFbFfgZO1OGn4cyLCyi5:QTvC/MTQYxsWPkzhVFfgt0gC

Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831.exe

Resource

win7-20240220-en

agenttesla zgrat keylogger rat spyware stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831.exe

Resource

win10v2004-20240221-en

agenttesla zgrat keylogger rat spyware stealer trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831
- Size
  
  1.2MB
- MD5
  
  473e41f5cbd714b3c04cf897803a330b
- SHA1
  
  4b7cfbc87d878587f4bc34541fd319c46cea2bca
- SHA256
  
  8f291e6386a4fce0e928b50244ea8c2b53d3411f981ba4492196435b33c88831
- SHA512
  
  8be6a593734bd265830e8a0053c875655b88148e6f54a8bdf86d9309504451ac93121430385879249e5058f7de0c5e9c81fc1edf0c0fbdcbb1407452bbb1a3f8
- SSDEEP
  
  24576:QqDEvCTbMWu7rQYlBQcBiT6rpFd+zhLFbFfgZO1OGn4cyLCyi5:QTvC/MTQYxsWPkzhVFfgt0gC
Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslazgratkeyloggerratspywarestealertrojan

behavioral2

agentteslazgratkeyloggerratspywarestealertrojan

© 2018-2025

Terms | Privacy