agenttesla | c11f99b7c2f0e5e8dcfa64160447e7e9360d37819070a56ad33b9c19123b9788 | Triage

Submit
Reports

Overview

overview

Static

static

5

Nuevo orde...50.exe

windows7-x64

Nuevo orde...50.exe

windows10-2004-x64

Sharing

General

Target

Nuevo orden _5464850.gz
Size

523KB
Sample

240522-q6w2xsdf55
MD5

c6efd3de1608f350a61a6ef9cfd3d34b
SHA1

e441135262f33ac34fc4a79dff514dfacf752eab
SHA256

c11f99b7c2f0e5e8dcfa64160447e7e9360d37819070a56ad33b9c19123b9788
SHA512

9d04445d15fb8c9c70780b479931edba3f4806af323e1f77fd3e7a22cfb7c759cc24a44b4a9d7ddbb2103276c6a6216f795e88edc46c8fa42f4b58a5e6384295
SSDEEP

12288:CApn1nVEUkfP6Xex/yoLIkz0HhLiK6j09GWdEif:CAR9qbK2nL0Nde+f

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Nuevo orden _5464850.exe

Resource

win7-20240419-en

agenttesla keylogger spyware stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

Nuevo orden _5464850.exe

Resource

win10v2004-20240508-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: ftp
Host:
ftp://ftp.grupovamex.com
Port:
21
Username:
[email protected]
Password:
tTgUWMBntHIE

Targets

- Target
  
  Nuevo orden _5464850.exe
- Size
  
  1013KB
- MD5
  
  fdcfe0864d9cac72b71057f9c8da739b
- SHA1
  
  1f04dbd0ee5eb73fa1850482569bd591c5d8f113
- SHA256
  
  ee209e95e1342d3ace87643a6a9d06d4a7f020837efad000502ff226b31b2e86
- SHA512
  
  3443b5436be3d8158b3a65f05b074f6ef359ac677de4b32a49441372d7fab7dc2a9bba7f4d5c4529e6aec63b02da6f3785834a2a5fdf3ac9fcc9aa62a3f2242f
- SSDEEP
  
  24576:XAHnh+eWsN3skA4RV1Hom2KXMmHac2Qm2YZ1Ziwx5:Kh+ZkldoPK8Yac2QmT15
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy