agenttesla | 35f07f6ad7a6b1a7c2732122ad05bcdbbd880023d9a4d7d85369f95ce0573823 | Triage

Resubmissions

11/07/2024, 18:02

240711-wmlpqsxgmj 10

11/07/2024, 18:00

240711-wljtraxfrj 10

Sharing

General

Target

RC2.zip
Size

814KB
Sample

240711-wljtraxfrj
MD5

52e0d5b0d6ad10fbf55553c1065e1676
SHA1

9beb5cea6e8b845bc44764b5a46349803f2d3e5d
SHA256

35f07f6ad7a6b1a7c2732122ad05bcdbbd880023d9a4d7d85369f95ce0573823
SHA512

3ba3bfa08f3fcf19ce14258da6c6c2381e581394b1ccf9866fb69ea087a1be55fba94bf728bf7dcbe3fdac66eddea417877db0a5472ff241a16041586ec8dea2
SSDEEP

12288:GclQZHM1jjaIEe/SQANO4UzZwL6jgXHIpRanIAiqbzpN7wInW3iFhLu5:Gex92mSQD4kpIn9pNF7C

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c97f23b52087cfa97985f784ea83498f
- SHA1
  
  d364618bec9cd6f8f5d4c24d3cc0f4c1a8e06b89
- SHA256
  
  e658e8a5616245dbe655e194b59f1bb704aaeafbd0925d6eebbe70555a638cdd
- SHA512
  
  ecfa83596f99afde9758d1142ff8b510a090cba6f42ba6fda8ca5e0520b658943ad85829a07bf17411e26e58432b74f05356f7eaeb3949a8834faa5de1a4f512
- SSDEEP
  
  49152:cvrqKk8q2gqi2OXCt6kuSw9g8PTNTN/23uxjPHEiCAjFcm:cvrqZr
Score

1^/10
behavioral1
- Target
  
  RC2.exe
- Size
  
  11KB
- MD5
  
  c63d4d9c2cab728a88f9c675ad7ac879
- SHA1
  
  42c84de57a3e9fc1ab41f02953b8c81f3a7a3333
- SHA256
  
  b2668c676ecd2acf39d68486ec9d3c44955a388823b6d7e8f052066945078e7f
- SHA512
  
  d40552e2e4ec9b0fe92c9e3f643430e473b00a38acb115c7dc7b4deb0d91016a0002d2676c7a0a9722cc3645ec97ed5f782bfe4d36f74b31a06508047d25c196
- SSDEEP
  
  192:8HG9gUKtGd+7xyIq2l7UVL85lg7oeGwCWEVaDGfGA:4G9gUKtnq2l7U6lg7oeGwCWEVa6fG
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral2
- Target
  
  RC2API.dll
- Size
  
  33KB
- MD5
  
  5d971b7b4f44bb6ba4a66678f85c8674
- SHA1
  
  3d82cdc0b88579a0b0ca0e5733c670414aff79bb
- SHA256
  
  38fb7cfe60298bf39b8c56e2bcef32b96261e55b487f518b0fa7369e88e72b6a
- SHA512
  
  29a2724d423942007f297deb6b34846dbd6275a2bc65e490cc6bc925ca2d80243a0fac33675278414261734bc6f4e62a2d06bb7b8ef0c90c66411db51d940d7b
- SSDEEP
  
  768:IPHhxuamxbfjSsrEVNj6SsNILvN5mY9PFTMUU:JbSsrEfj6SsNIZ5p5FAUU
Score

1^/10
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

agentteslakeyloggerspywarestealertrojan

behavioral3