agenttesla | 3aeff36bc501e1e6367152406d63cfb752cc8a4a6fbe971f17123d744f01cfaf | Triage

Submit
Reports

Overview

overview

Static

static

3

Ödeme onaylama.exe

windows7-x64

Ödeme onaylama.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

Ödeme onaylama.tgz
Size

1.4MB
Sample

240704-m3cbkayblh
MD5

ef42530db6091852e5918557d297ddbc
SHA1

0b2eaa41e9419bcfe287ad19a4d3215e83aad34f
SHA256

3aeff36bc501e1e6367152406d63cfb752cc8a4a6fbe971f17123d744f01cfaf
SHA512

74d2d7d03add4ccbcbb83829fbfcfea4f33995ca1e225c54765e586237d0a77f1a6bd7013feb1c1cffce78f12650597b580479f82a3b8c469ba3f65582066bf6
SSDEEP

24576:bcKTd2/ljYlxngF3Gs/rV/LVqFsftvqVEwuy1H80Y+ad/hD7FcZ3kK9F0:ACMtj4wW7OvqRuQc0Y1J7FQ3kK9F0

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Ödeme onaylama.exe

Resource

win7-20240508-en

agenttesla keylogger spyware stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Ödeme onaylama.exe

Resource

win10v2004-20240611-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

C2

https://api.telegram.org/bot7154232398:AAEprpSrKtvK17zgH_6Ak0foVI7qtth3csI/

Targets

- Target
  
  Ödeme onaylama.exe
- Size
  
  3.0MB
- MD5
  
  4b6fa254293a7c473d738967ee1949f4
- SHA1
  
  8b57e250cb8829b85d0370e81b2a2595c55398e6
- SHA256
  
  4ff52001ba6ad7e84ea1f6f24d895b3e8705d9bc7ee5afbcf09f8a2855c1c50e
- SHA512
  
  10436d797c8aee650dd476694410666491ba046d7c2e00c951747cde404d435acac38d23e43a1bbc51c4a3914a958b041b274d345d34a9a29baef0f8d276bceb
- SSDEEP
  
  49152:V77LvQE87W0HWTKM4T1gFFVhDHCXuzkw:FOu+u
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy