agenttesla | b13b88c05468dc9561c17e11951eb24b692653f32d0e3be4b64d8704b592908d | Triage

Sharing

General

Target

ImageManager.exe
Size

830KB
Sample

240625-nhkymszdlq
MD5

f979b92c52ab8d4b1b48c962b9a7cddd
SHA1

1d8d5f0b2ce401ae870309ff374f174b66f6eac0
SHA256

b13b88c05468dc9561c17e11951eb24b692653f32d0e3be4b64d8704b592908d
SHA512

684ac3f4c8969e98a4c5be268edcd192b2fae984fc32f3a9c2b636fac7868dd5541642709054ddf419097fc8c833e866afe8ef7c7f06e59e2325113b0d800368
SSDEEP

24576:1fWjg4xVGitOcfYmzwGXvlBeDWH89eosLliGnIuN1:1fWjgYEitVwmzwGXvlBNH89kLZnT

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  ImageManager.exe
- Size
  
  830KB
- MD5
  
  f979b92c52ab8d4b1b48c962b9a7cddd
- SHA1
  
  1d8d5f0b2ce401ae870309ff374f174b66f6eac0
- SHA256
  
  b13b88c05468dc9561c17e11951eb24b692653f32d0e3be4b64d8704b592908d
- SHA512
  
  684ac3f4c8969e98a4c5be268edcd192b2fae984fc32f3a9c2b636fac7868dd5541642709054ddf419097fc8c833e866afe8ef7c7f06e59e2325113b0d800368
- SSDEEP
  
  24576:1fWjg4xVGitOcfYmzwGXvlBeDWH89eosLliGnIuN1:1fWjgYEitVwmzwGXvlBNH89kLZnT
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan