agenttesla | 20813bb9c9e64a43dac00b7748d78e5327301dfdf25127e1906d4db53c14be80 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

FREE undetected Triggerbot_NmaID2rmOdebVz6.rar
Size

2.0MB
Sample

240418-ls6a8aag9z
MD5

7ef3078aebc8a741f44e8b55f3c0402d
SHA1

5dcfe43ce72d55b93849c6a75f45bec3da4cbc3c
SHA256

20813bb9c9e64a43dac00b7748d78e5327301dfdf25127e1906d4db53c14be80
SHA512

ba5c11a8f29def9a127e3373cfb7e4152ec4df2484d1b0c5815be009a9c4aad49d8f0061b1a696469f400026f7ae1d3688a1199ae601cd69f70aee506aefefaf
SSDEEP

49152:3tmnHzDefmje9r/jtYW0HodDgfzq2CkuGP3Bnuq:3tsDeuq9rj0HEc3CORX

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  FREE undetected Triggerbot_NmaID2rmOdebVz6.rar
- Size
  
  2.0MB
- MD5
  
  7ef3078aebc8a741f44e8b55f3c0402d
- SHA1
  
  5dcfe43ce72d55b93849c6a75f45bec3da4cbc3c
- SHA256
  
  20813bb9c9e64a43dac00b7748d78e5327301dfdf25127e1906d4db53c14be80
- SHA512
  
  ba5c11a8f29def9a127e3373cfb7e4152ec4df2484d1b0c5815be009a9c4aad49d8f0061b1a696469f400026f7ae1d3688a1199ae601cd69f70aee506aefefaf
- SSDEEP
  
  49152:3tmnHzDefmje9r/jtYW0HodDgfzq2CkuGP3Bnuq:3tsDeuq9rj0HEc3CORX
Score

3^/10
behavioral1 behavioral2
- Target
  
  FREE undetected Triggerbot/DiscordRPC.dll
- Size
  
  82KB
- MD5
  
  3956130e36754f184a0443c850f708f8
- SHA1
  
  4874cd51b0fa5652ed84e3b0c123bee05dcdffc8
- SHA256
  
  25c39f91f737d80040c72c9e3f95db0fece1c9653f501828adc16cfb1ec59d26
- SHA512
  
  157143dd69378e9914ddbb934229cfbc99ae7d80f4f787b7799fc254054d2c7b1e6f4551cddea30470e28b61309f858fcdb2d009b1c32953dfe5ea7fe78e9e48
- SSDEEP
  
  1536:RICqBkny2//yF9999999999dGxde6HYPM4Q+mRxpSNh:RNy2//yF9999999999dn6b4Q+mWh
Score

1^/10
behavioral3 behavioral4
- Target
  
  FREE undetected Triggerbot/Fre3 Triggerb0t.exe
- Size
  
  1.2MB
- MD5
  
  1f0f0278259dd5863a5c16aeaf301b6d
- SHA1
  
  6e980fecbadb5926315994a345b8394eef1d67e7
- SHA256
  
  499ed15016eded123e4b168f58a8e228f88a74f2672c5e66fac985a3dd8e1f5f
- SHA512
  
  df414341c45e19183ca3edd1faaba868890d1a3be9823cfebcfcfbd1c57a815a12ab0d6966e9193fab6f3c8c5171826be9c437d1304ea2449a1fdaa880a434a2
- SSDEEP
  
  24576:Ly4qbapZhB0bcCHSSdF49RDsddkzUpskmnxDRZem:MbaQcfS/uDsdCzUpskGN
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral5 behavioral6
- Target
  
  FREE undetected Triggerbot/Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c19e9e6a4bc1b668d19505a0437e7f7e
- SHA1
  
  73be712aef4baa6e9dabfc237b5c039f62a847fa
- SHA256
  
  9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
- SHA512
  
  b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
- SSDEEP
  
  49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score

1^/10
behavioral7 behavioral8
- Target
  
  FREE undetected Triggerbot/Newtonsoft.Json.dll
- Size
  
  685KB
- MD5
  
  081d9558bbb7adce142da153b2d5577a
- SHA1
  
  7d0ad03fbda1c24f883116b940717e596073ae96
- SHA256
  
  b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3
- SHA512
  
  2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511
- SSDEEP
  
  12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5
Score

1^/10
behavioral10 behavioral9
- Target
  
  FREE undetected Triggerbot/Read me plwss.txt
- Size
  
  676B
- MD5
  
  e01bdf334e97d5830d4e3698394c9b65
- SHA1
  
  c7d0008f4f55bc903ec70925c3e914babf05cd55
- SHA256
  
  3cf943e8dc61d5b0845434d6d59416b56991d25769fb7593502b700fc40203e8
- SHA512
  
  cc5f27e4f287628581874e0ed60722c1c9390d2a6e098c15c60d88792cfab22044a2504f64129439c8ffe8bf95460de1ea2e3d95bc047d4d85b2baefd05842a6
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

agentteslakeyloggerspywarestealertrojan

behavioral6

agentteslakeyloggerspywarestealertrojan

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12