agenttesla | 8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101 | Triage

Submit
Reports

Overview

overview

Static

static

5

8bdc4db120...cs.exe

windows7-x64

8bdc4db120...cs.exe

windows10-2004-x64

Sharing

General

Target

8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101_NeikiAnalytics.exe
Size

1.1MB
Sample

240624-te5rjazhqe
MD5

a09b519415a8d57d34aa43b75e7536c0
SHA1

5186d8fa6d801ce80a737afe7917b5ef312d2a49
SHA256

8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101
SHA512

adf426f737217508704fd4621db2f80214ceb7bc168527caf218eeba8753756137f57acf726a981531940bbb7d8bdfbc47426afffe5d8611ba01d26c66a2a853
SSDEEP

24576:PAHnh+eWsN3skA4RV1Hom2KXMmHa2XSzx4B+PTix5:yh+ZkldoPK8Ya2XSV48PTY

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101_NeikiAnalytics.exe

Resource

win7-20240221-en

agenttesla keylogger spyware stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
cp8nl.hyperhost.ua
Port:
587
Username:
[email protected]
Password:
cy+G_(979n9N
Email To:
[email protected]

Targets

- Target
  
  8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101_NeikiAnalytics.exe
- Size
  
  1.1MB
- MD5
  
  a09b519415a8d57d34aa43b75e7536c0
- SHA1
  
  5186d8fa6d801ce80a737afe7917b5ef312d2a49
- SHA256
  
  8bdc4db1206dece3e1cd05267080e9e5f342a31abf53c58bee03eff46d061101
- SHA512
  
  adf426f737217508704fd4621db2f80214ceb7bc168527caf218eeba8753756137f57acf726a981531940bbb7d8bdfbc47426afffe5d8611ba01d26c66a2a853
- SSDEEP
  
  24576:PAHnh+eWsN3skA4RV1Hom2KXMmHa2XSzx4B+PTix5:yh+ZkldoPK8Ya2XSV48PTY
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy