agenttesla | de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d | Triage

Submit
Reports

Overview

overview

Static

static

5

de33e5936f...8d.exe

windows7-x64

de33e5936f...8d.exe

windows10-2004-x64

3

Sharing

General

Target

de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
Size

1.3MB
Sample

240430-berkssff48
MD5

d92e29d88405e9a0047557d3f0e7cd69
SHA1

865dc31980298f951f5229c0526d784b531649a8
SHA256

de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
SHA512

b777608922c9d946c1d712d905095e97ecdc5164e37d366be6fe46f4132a8bb186d55a5592624ccad1ba2d4359b8a57233024d897f0a45670b51049d2faa42f9
SSDEEP

24576:QAHnh+eWsN3skA4RV1Hom2KXMmHa3ju0NlfVJojr5:Hh+ZkldoPK8Ya3S0rVm

Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d.exe

Resource

win7-20231129-en

agenttesla zgrat keylogger rat spyware stealer trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
- Size
  
  1.3MB
- MD5
  
  d92e29d88405e9a0047557d3f0e7cd69
- SHA1
  
  865dc31980298f951f5229c0526d784b531649a8
- SHA256
  
  de33e5936f21cdc596ea54216b8c373a2acfed9b3527b31109d8c4e9bc1d288d
- SHA512
  
  b777608922c9d946c1d712d905095e97ecdc5164e37d366be6fe46f4132a8bb186d55a5592624ccad1ba2d4359b8a57233024d897f0a45670b51049d2faa42f9
- SSDEEP
  
  24576:QAHnh+eWsN3skA4RV1Hom2KXMmHa3ju0NlfVJojr5:Hh+ZkldoPK8Ya3S0rVm
Score

10^/10

agenttesla zgrat keylogger rat spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslazgratkeyloggerratspywarestealertrojan

behavioral2

© 2018-2024

Terms | Privacy