agenttesla | 24b76df7abc8f59e9936af61ba8b9b10bd34c609c28133ebfddc25cf1968a95f | Triage

Sharing

General

Target

Oxycontin.exe
Size

9.3MB
Sample

240522-vrx3wsab8s
MD5

19ac650b2f6a3d6a210bc1a0bed4d3e7
SHA1

db3d2278e300ba3ffcd7572915ae47ef4783372c
SHA256

24b76df7abc8f59e9936af61ba8b9b10bd34c609c28133ebfddc25cf1968a95f
SHA512

f35ae9ad3e9d0702acb7aefb08f88b18372987a442fbfc0920a377bead4a1a1ef379936a9b0751da5711a266bb3d75bc5b57214d726f4508232e68af873daa7b
SSDEEP

196608:0915JSpQgHae6TqZlBay2UjzkSIDi6Uck:09gUe6Y7YUnkSZE

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Oxycontin.exe
- Size
  
  9.3MB
- MD5
  
  19ac650b2f6a3d6a210bc1a0bed4d3e7
- SHA1
  
  db3d2278e300ba3ffcd7572915ae47ef4783372c
- SHA256
  
  24b76df7abc8f59e9936af61ba8b9b10bd34c609c28133ebfddc25cf1968a95f
- SHA512
  
  f35ae9ad3e9d0702acb7aefb08f88b18372987a442fbfc0920a377bead4a1a1ef379936a9b0751da5711a266bb3d75bc5b57214d726f4508232e68af873daa7b
- SSDEEP
  
  196608:0915JSpQgHae6TqZlBay2UjzkSIDi6Uck:09gUe6Y7YUnkSZE
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan