agenttesla | a17707c4a5a15c83eb178719fae6606a62ab9b0ded71a01ce9b44302f22e3341 | Triage

Submit
Reports

Overview

overview

Static

static

3

SecuriteIn...05.exe

windows7-x64

SecuriteIn...05.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.W32.MSIL_Kryptik.DSR.gen.Eldorado.16905.957
Size

1014KB
Sample

240315-pyhc5age6t
MD5

866b85b3ade98e5dd7842e3c32b8241c
SHA1

0f866ef62fb1db837a635144cdde91b7b24ab9a0
SHA256

a17707c4a5a15c83eb178719fae6606a62ab9b0ded71a01ce9b44302f22e3341
SHA512

a7871da61e61db5c778e4f371adf19106a118a226ec41068f0e022ce64121f720697fdf3f819a36fe94352e8f2c7111d9e9ef91e6299f4f3cc720bfee526f3d9
SSDEEP

24576:FUCTQvNZPLsLlNgw2WgT+cLtqHgTLwq5Qf:FnQvHQBSPtXqATLQ

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

SecuriteInfo.com.W32.MSIL_Kryptik.DSR.gen.Eldorado.16905.exe

Resource

win7-20240221-en

agenttesla keylogger spyware stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.W32.MSIL_Kryptik.DSR.gen.Eldorado.16905.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
smtp.ionos.es
Port:
587
Username:
[email protected]
Password:
ReparaHogar2013
Email To:
[email protected]

Targets

- Target
  
  SecuriteInfo.com.W32.MSIL_Kryptik.DSR.gen.Eldorado.16905.957
- Size
  
  1014KB
- MD5
  
  866b85b3ade98e5dd7842e3c32b8241c
- SHA1
  
  0f866ef62fb1db837a635144cdde91b7b24ab9a0
- SHA256
  
  a17707c4a5a15c83eb178719fae6606a62ab9b0ded71a01ce9b44302f22e3341
- SHA512
  
  a7871da61e61db5c778e4f371adf19106a118a226ec41068f0e022ce64121f720697fdf3f819a36fe94352e8f2c7111d9e9ef91e6299f4f3cc720bfee526f3d9
- SSDEEP
  
  24576:FUCTQvNZPLsLlNgw2WgT+cLtqHgTLwq5Qf:FnQvHQBSPtXqATLQ
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

© 2018-2025

Terms | Privacy