agenttesla | 92eb383902968583b636e453eb4915bcd0c0897e22e172d98a095c8388a0d68d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DigitalServices_Spoofer.exe
Size

3.5MB
Sample

240708-dgy4rsyhqm
MD5

0886fd3a858636b42f2f8b3fe78e7e8b
SHA1

27fd3cd5c69e87d06be1fdd23ae31244cb6e1f8c
SHA256

92eb383902968583b636e453eb4915bcd0c0897e22e172d98a095c8388a0d68d
SHA512

3e5ac83c5f0a6c12b482e8f8757235543a9f46b171b5a272660b81cbde4591acaaecad3ca9ae86b71e11beb545d6b8a0f62b9d8d4f74641fb8344b5f100b2322
SSDEEP

98304:NvKcFpp+a0vKcFpp+ax/EHvKcFpp+ay7K5JEyUa:NvKmb0vKmbyHvKmbWKHEyU

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  DigitalServices_Spoofer.exe
- Size
  
  3.5MB
- MD5
  
  0886fd3a858636b42f2f8b3fe78e7e8b
- SHA1
  
  27fd3cd5c69e87d06be1fdd23ae31244cb6e1f8c
- SHA256
  
  92eb383902968583b636e453eb4915bcd0c0897e22e172d98a095c8388a0d68d
- SHA512
  
  3e5ac83c5f0a6c12b482e8f8757235543a9f46b171b5a272660b81cbde4591acaaecad3ca9ae86b71e11beb545d6b8a0f62b9d8d4f74641fb8344b5f100b2322
- SSDEEP
  
  98304:NvKcFpp+a0vKcFpp+ax/EHvKcFpp+ay7K5JEyUa:NvKmb0vKmbyHvKmbWKHEyU
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan