agenttesla | 5d958407dbf9792b8637e82e3ca41554aa1dbda9a9bbd775a109a0d155c8e841 | Triage

Submit
Reports

Overview

overview

Static

static

3

Free Skinc...y .exe

windows11-21h2-x64

Sharing

General

Target

Free Skinchanger by .exe
Size

10.8MB
Sample

240429-sa2zeadg2y
MD5

89d924c09797e784a4c4b9258f63d30d
SHA1

e2a3482a93f3b1c5ffcb434fc83569a8ed5e0135
SHA256

5d958407dbf9792b8637e82e3ca41554aa1dbda9a9bbd775a109a0d155c8e841
SHA512

a7ad67e9545f2e2fb95eb96cb47006ff90980d183aa888991c66717d0dbd5cd83b096866490154a47436c0671c46f04400a41e02446586e3003d21ad94a8b031
SSDEEP

196608:LNDOsefRpRLkgkmmTDN4QHfviMI4Qq+gCxipkdjjBHYMw:LNDb6PpKi6Iq+MqdXB7w

Score

10^/10

agenttesla evasion keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Free Skinchanger by .exe

Resource

win11-20240426-en

agenttesla evasion keylogger spyware stealer trojan

windows11-21h2-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  Free Skinchanger by .exe
- Size
  
  10.8MB
- MD5
  
  89d924c09797e784a4c4b9258f63d30d
- SHA1
  
  e2a3482a93f3b1c5ffcb434fc83569a8ed5e0135
- SHA256
  
  5d958407dbf9792b8637e82e3ca41554aa1dbda9a9bbd775a109a0d155c8e841
- SHA512
  
  a7ad67e9545f2e2fb95eb96cb47006ff90980d183aa888991c66717d0dbd5cd83b096866490154a47436c0671c46f04400a41e02446586e3003d21ad94a8b031
- SSDEEP
  
  196608:LNDOsefRpRLkgkmmTDN4QHfviMI4Qq+gCxipkdjjBHYMw:LNDb6PpKi6Iq+MqdXB7w
Score

10^/10

agenttesla evasion keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Downloads MZ/PE file
- Modifies Windows Firewall
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

agentteslaevasionkeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy