agenttesla | 274d1736557ec814867b7b474604e946272c7cda33bac17becc15c1a7d4ca493 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

SolarisBET...is.exe

windows7-x64

SolarisBET...is.exe

windows10-2004-x64

Sharing

General

Target

SolarisBETA.rar
Size

111.8MB
Sample

240504-kng76abg57
MD5

d8fac3f5509f0ceb89f815f12767208b
SHA1

4851ba481727bb2f9f124cc75345596ee057eb4b
SHA256

274d1736557ec814867b7b474604e946272c7cda33bac17becc15c1a7d4ca493
SHA512

c6676b7b0071e74bfa03cdacb2a025c5f510d57fd3ae8deff81a777fc7ca09bd07a8f39e0575e727ff039643c16ace407409cac196629f75689850454f0fbc43
SSDEEP

3145728:qm1Z9RC6KflBqFF69FiCLK0sMWspIjZKFlp:qtllhtLdI9Kl

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

SolarisBETA/Solaris.exe

Resource

win7-20240215-en

agenttesla keylogger spyware stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

SolarisBETA/Solaris.exe

Resource

win10v2004-20240419-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  SolarisBETA/Solaris.exe
- Size
  
  143KB
- MD5
  
  f8cc2b58cec9e31bf803fae2e4f46bfa
- SHA1
  
  b2ffd2d4288b141e35e732f85e4949b4ed7b4820
- SHA256
  
  365dc0f2d75a3468ba97b0e4f262b34b3e42c0f8085c0cf6c4745abd1cab2b75
- SHA512
  
  d243e216bde8a8265b21923a1268de8b7665cbc6b547edcfc96b3d5883475980d9a870c6c9e3de523bd42dd8815648a43c739157cad3aa3f205555252e6e72a9
- SSDEEP
  
  3072:ErHyYbtwcPYv4DlyzCk/2WlguRdLDhwHeL7nxZUvXvtaIA2XP7XXADPG:ErHRbtwcPYv4DlyzCk/zguRvL7xwcIA7
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy