agenttesla | 48901cf7e9eb00356b66aff41de3c17f32ad34055cd73a87282f7070fba25d0d | Triage

Sharing

General

Target

17d833ad8372748d37e3a34eafdff71e.bin
Size

1.5MB
Sample

240327-bp49msgh39
MD5

17d833ad8372748d37e3a34eafdff71e
SHA1

86aab8d3992791a864599575677f21981484f0c3
SHA256

48901cf7e9eb00356b66aff41de3c17f32ad34055cd73a87282f7070fba25d0d
SHA512

de81290cd94dc5dc0b7c084137aa13bc630d44b6c05dedeb3b49ef65a38dc2c532692bcf134010adda379bd17e1ae6dfa9f5e329f1d93ace50fdcbb6903da76d
SSDEEP

24576:BK/wkLM9/sCn9UW1pljhEITMvRFhRRbNWoCfkYSEH3OqtwIuX3m:8YdsC9UQVKITYbNbNWo4kSH3OqtwIWm

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  17d833ad8372748d37e3a34eafdff71e.bin
- Size
  
  1.5MB
- MD5
  
  17d833ad8372748d37e3a34eafdff71e
- SHA1
  
  86aab8d3992791a864599575677f21981484f0c3
- SHA256
  
  48901cf7e9eb00356b66aff41de3c17f32ad34055cd73a87282f7070fba25d0d
- SHA512
  
  de81290cd94dc5dc0b7c084137aa13bc630d44b6c05dedeb3b49ef65a38dc2c532692bcf134010adda379bd17e1ae6dfa9f5e329f1d93ace50fdcbb6903da76d
- SSDEEP
  
  24576:BK/wkLM9/sCn9UW1pljhEITMvRFhRRbNWoCfkYSEH3OqtwIuX3m:8YdsC9UQVKITYbNbNWo4kSH3OqtwIWm
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan