agenttesla | f9267bb81f6275ef22b0fa7b0ba37c3624e7398fcb277d853ce28eb27d90f8ce | Triage

Sharing

General

Target

Vex Cleaner.exe
Size

1.1MB
Sample

240424-xtvrnafe9x
MD5

add98836a2007bfbeea5714320fdfe6b
SHA1

617097155f74e9466f5ef3e41a16a9a01b809314
SHA256

f9267bb81f6275ef22b0fa7b0ba37c3624e7398fcb277d853ce28eb27d90f8ce
SHA512

e389c177ba6403cf0052bd492cbefb85e0bcafd5efbb35eeff07e2b0cd65c258ab119d5d7caf0f6cd2b444e90ad44b62786b04533b97ce98efd3c4039ed0f0cf
SSDEEP

24576:ydngwtlaHxN8KUWVe6tw2wvKhLnekqjVnlqud+/2P+AG2V:ydngwwHv5VbtHw1kqXfd+/9A

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Vex Cleaner.exe
- Size
  
  1.1MB
- MD5
  
  add98836a2007bfbeea5714320fdfe6b
- SHA1
  
  617097155f74e9466f5ef3e41a16a9a01b809314
- SHA256
  
  f9267bb81f6275ef22b0fa7b0ba37c3624e7398fcb277d853ce28eb27d90f8ce
- SHA512
  
  e389c177ba6403cf0052bd492cbefb85e0bcafd5efbb35eeff07e2b0cd65c258ab119d5d7caf0f6cd2b444e90ad44b62786b04533b97ce98efd3c4039ed0f0cf
- SSDEEP
  
  24576:ydngwtlaHxN8KUWVe6tw2wvKhLnekqjVnlqud+/2P+AG2V:ydngwwHv5VbtHw1kqXfd+/9A
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan