agenttesla | db6599549e8cf96cafe6901d5303fd9c0d08865d72d9677870c151e93110fd92 | Triage

Resubmissions

29-03-2024 07:34

240329-jekfgsce2z 10

29-03-2024 07:18

240329-h47rmsch79 10

Sharing

General

Target

msedge.exe
Size

1.2MB
Sample

240329-jekfgsce2z
MD5

681eba38b74a4e49c60e2afa4645e22f
SHA1

1be30752210c8772da802708e531bec578a156f7
SHA256

db6599549e8cf96cafe6901d5303fd9c0d08865d72d9677870c151e93110fd92
SHA512

82658b0d84731da66b6d556186580730f94a85fe175e52b59590d22b65ea3ab3d57db9eae73c9f6ecd77923edc46137dd5b5036d7bce65a1c655e74f4fa3ae69
SSDEEP

24576:V/kyITMvRFhRRbNWoCfkYSEH3OqtwIuX5mIfw+Jwz/S/6g:V/kyITYbNbNWo4kSH3OqtwI+mmw+W7SC

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  msedge.exe
- Size
  
  1.2MB
- MD5
  
  681eba38b74a4e49c60e2afa4645e22f
- SHA1
  
  1be30752210c8772da802708e531bec578a156f7
- SHA256
  
  db6599549e8cf96cafe6901d5303fd9c0d08865d72d9677870c151e93110fd92
- SHA512
  
  82658b0d84731da66b6d556186580730f94a85fe175e52b59590d22b65ea3ab3d57db9eae73c9f6ecd77923edc46137dd5b5036d7bce65a1c655e74f4fa3ae69
- SSDEEP
  
  24576:V/kyITMvRFhRRbNWoCfkYSEH3OqtwIuX5mIfw+Jwz/S/6g:V/kyITYbNbNWo4kSH3OqtwI+mmw+W7SC
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan