agenttesla | 26c686e04dfd913161d239e2cb51ceb87bd5d68422f7555aa5f8d9eb1873997e | Triage

Sharing

General

Target

Scorpion-Premium_Generateur.rar
Size

980KB
Sample

240330-p57atsfg63
MD5

3b2cb314b5b5baa26d127294e057e748
SHA1

07046b1266adf3030dcbf39afbd25f9ffb395eab
SHA256

26c686e04dfd913161d239e2cb51ceb87bd5d68422f7555aa5f8d9eb1873997e
SHA512

f77f36fb72b15dd88aa7e1595e6ed042ab5ae6be90b8ab8ff59700122495eecf48ffc66ccc86fceb5d41f885d82d5bf6150fbce5a73b69cb064da8800cc82b4d
SSDEEP

24576:6dp6aQMljxgBEKi9J2nKd123qH/3WzCJ6ZmcFA0qwJiFMp2Fq:6doaQMlj+a5R16qOzRZr7qwyMUg

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  dddd/Guna.UI2.dll
- Size
  
  1.9MB
- MD5
  
  83e9df5d534f50280251d662861bf476
- SHA1
  
  d2ecd37e462b3c6fa763341a12f9de74326cb646
- SHA256
  
  836e1cc306eab0817a10c613a9c99d4dcbd604624b8b90f551d410dc164eef82
- SHA512
  
  af38cfbd5fb866662afa4548011ba2d262cd70ff145fe4118db3322a9ea243bd9d8dc9cdfc62a246df014949a94d159bcd47a8f8f04010b93c963511a7e6a72a
- SSDEEP
  
  24576:+5lxrKZ9DHFoXP/Jt/A1IKKPZANZuwgHQ/jz41RMIK24:Av/CIRqwRMIK24
Score

1^/10
behavioral1 behavioral2
- Target
  
  dddd/Générateur Scorpion-Premium.exe
- Size
  
  1.1MB
- MD5
  
  c7936aa7c0ed1759dbaa45ed4e13a548
- SHA1
  
  1b7cec2a815a93e7d0f5d6480d9dbdd30953245f
- SHA256
  
  0f760af630a93cd72a6580ffbebaf7eea6912255435b48f4e7dc4a696c0d3662
- SHA512
  
  88b0d35114f3a6ed167774062f6d7d89125d61a3132b72d41c8293eef940a05ac8d487ebb5659d6b4ff6616967c3e27d5e9698c84680e948fff7d1df0915b930
- SSDEEP
  
  12288:oo+H5nseophtd5FJgeF9CMIXSvIlclxXSvIlclHXSvIlcl:odMhlFnC5cl5clbcl
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral3 behavioral4
- Target
  
  dddd/LogIn Theme Dll By xVenoxi.dll
- Size
  
  115KB
- MD5
  
  f3a5fd717a0782c88641cdec9e66ea64
- SHA1
  
  0128f6577dab38a097606e483f962ef98fa085cb
- SHA256
  
  04d7e61f6102a9cfb7e262211880d1a2ac89ad5edf30cf4d28ac5e1444ee4c97
- SHA512
  
  6bc88a3dac591420d97e39b0541bae115c8266401dbf54ca5623fcf9b3c0c25d5dbc9e20f08597a20fa5913266547846a867f071d4adbedcb2377ef8cad997b5
- SSDEEP
  
  3072:Anv5NgCErhIh8PPKYnVobmgJzf/aDVt3WEl9mRzaqBnpm13KGfo74diqiRMoQd:ex6Y9H7fMoQ
Score

1^/10
behavioral5 behavioral6
- Target
  
  dddd/theme.dll
- Size
  
  84KB
- MD5
  
  3103fe8ace86424086d97285f12af135
- SHA1
  
  741b237c0fa0098ef3aad6b6b48e7a377afff621
- SHA256
  
  e9011d9fed685da012d9f5baee15872805e52bf73e2b8aa06b2792d20370d653
- SHA512
  
  733575743e937bce17e4144d312e2d41ebf6953d40875215cce22be9106b870ee10aa186ff58fd40e6a0cbf262c0dda9f8245acac2962b538da286128135bfde
- SSDEEP
  
  1536:tMjk8q1YWWEyMR0xkOs6nwhyycoWMQo9sjWCd8I730iGGaccPPio:tMjk8q1YWWEyMRWkOBnwhyyc3MQoWjWd
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

agentteslakeyloggerspywarestealertrojan

behavioral5

behavioral6

behavioral7

behavioral8