agenttesla | f499a10cc0b407da6505c4b29aca2af7b058d3a882a23f7f935a7be3889811db | Triage

Sharing

General

Target

f499a10cc0b407da6505c4b29aca2af7b058d3a882a23f7f935a7be3889811db
Size

78KB
Sample

240711-vt4nfsyeqb
MD5

5470c92dd6b75d4af7cfa74a4ba5d0bd
SHA1

065e279ed4f0e66ea0d932a4e8ee2b955d0face2
SHA256

f499a10cc0b407da6505c4b29aca2af7b058d3a882a23f7f935a7be3889811db
SHA512

b358d543d47f1895c64f37035e9dd622e80e628168dcbe0817b37bdf670ee8666d47d5c42a885ddc5f02b1d042bf5919517f48cf3ddafc11412df2869de6bab6
SSDEEP

1536:ft3XwkcWseHF/jeo01QzgpE66U4VJYkWTwRpheWSr8cIgQh22FE:ft3ANMxjeB1f++qYB6dOQh7E

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  RC2Bootstrapper.dll
- Size
  
  7KB
- MD5
  
  d450c292e0a691538122110a13dcbb4e
- SHA1
  
  6092af9ca7f0ecc5e8e690a30cfa27a8358465c6
- SHA256
  
  c3115078313b38cf09c433ad6335324e8a4484b13ab10d459bb9b89759b2f899
- SHA512
  
  ae5f05f05bae2490ecc9fee6af6bd14fcb8319cab95210703cac7a9086ae9ebe98dd13b4284a28e45c88313b00150ae0ab4bf72e84fd63da642540878514853f
- SSDEEP
  
  96:rVYj7PqtbeHH9j+BZ5t5CYlNSU1BF1acxtPiWquwuGun21R45KzNt:rVSaeHH9j435C0IU3LaA7fFbn6As
Score

1^/10
behavioral1 behavioral2
- Target
  
  RC2Bootstrapper.exe
- Size
  
  154KB
- MD5
  
  baae212c86392bee9742d0bcddbe4f38
- SHA1
  
  7d65c52ff09fbaa2183b6cf00f5591575ef623a9
- SHA256
  
  7e155e4c91505705da62df4af04950d7461c1c2b1ce85137d845cfdc8cc10435
- SHA512
  
  b82826996a7ff383eeb8615df2f6ef2c3544e0fbc9dad6fa411bdeadeae17749414bc60201db57ba63ac1f183b16e59ab6dca4a4934373d20d40837f639e673c
- SSDEEP
  
  3072:x7LW6Pr46prwG2k5GlI1JWE9QVsxyvJyn4NTfQf1VZlfWhrn:xXWJ5kICW3Jyn4if1VZNi
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

agentteslakeyloggerspywarestealertrojan