agenttesla

Sharing

Copy URL

Twitter E-mail

General

Target

New folder (14).zip
Size

4.7MB
Sample

240714-szfsgawfmj
MD5

408d4dbc325c1d058a49bb12937b7674
SHA1

9b642c6bf04dbfa45c8d03320a8a61df02d44c9d
SHA256

c630426553a558130682304d7af1f529701c4d395085280cb7cd955f41f6fc11
SHA512

530b38dba1bb0a4e5878612b1e4091abcda487b9618399a328774cbcfe278dbb346de2b47e5896274b028ac97640dbebea809c3212554f85331939ab58585332
SSDEEP

98304:PMeyt2DqFvbndEsJ0glveKI5y+zfbAqzHm4rAiyLc4hFcMVAQPNOaS:U72avbdn1veKAy+HAC5dEtN6gY

Score

10^/10

Malware Config

Targets

- Target
  
  New folder (14)/Bunifu.Licensing.dll
- Size
  
  989KB
- MD5
  
  04eadcc8e6d9b79af5bb565af5469edc
- SHA1
  
  726f5f891c6241779a25abf46d94c3b216af67b2
- SHA256
  
  b53d83a80f2c94ebd44d5449c8ef40e6012e6897472221ce51c55ea7537bb6c2
- SHA512
  
  8078f0a3b46fbbaed0f229975a0d69af6596c90732eedea45e8a534afffa9390f43ceeee9a473e4bdb773100b8b7a0a843f5ee4eea8fd553a7a8883b9628f5e4
- SSDEEP
  
  6144:NciP0tUWtCAfjMeks3NTMwp5wp/hNrAfjMeks3SBegbEpJaCgmIve9:VBmbXNTMwLwp/D8bXSIgbEpzreO
Score

1^/10
behavioral1 behavioral2
- Target
  
  New folder (14)/Bunifu.UI.WinForms.dll
- Size
  
  1.3MB
- MD5
  
  fbfc2e5d850927d399e6ffe2db9497e1
- SHA1
  
  3132a36af6bc471d362fb5e94c6d922f3e9f2400
- SHA256
  
  7e0154d5ebfd5aae26bd0e4e10639b0d6d529902d82a39d68910ea9f26b1a72e
- SHA512
  
  198af82c7cb993f20d934e7dfb329753eba98c31e03142bf67d753e2882ad6ade629bb9cb37311d4d71a3c9cae7e9bac4de34b036a623e86390c4707eaced5cf
- SSDEEP
  
  12288:U8EfgP7vg1QiYUc9bgu+1yJefiHgk8ZIjOHK5z0X+uEcF5tgH:UcP7o1QiPu+1yJefg8ZHK5z0X+uHFr
Score

1^/10
behavioral3 behavioral4
- Target
  
  New folder (14)/CeleryIn.bin
- Size
  
  44KB
- MD5
  
  cc7e9dd40db5c538627c7645eb14d036
- SHA1
  
  4ccac29689ddd6b63892df0bbbf98aa1250419bf
- SHA256
  
  67c8386dc05355c49b8137990218be6177dba810fae418f0cce964c1d0082702
- SHA512
  
  3a91394dfa95ce012925639f12d05cbdd3c8f0b955601043952e3b6aa89cde816107a857d772bb5528422f41f2206b5a415de8fdfed2a178f2b13904a15dc5cf
- SSDEEP
  
  384:jVdzew6q0MEe7Tc8cZO1D9WDPAy7cRxoTYVJa5voVMmA2QdwB5bh1r:RYiXFcZkRcXbTYVJa8NA2jj
Score

1^/10
behavioral5 behavioral6
- Target
  
  New folder (14)/CircularProgressBar.dll
- Size
  
  17KB
- MD5
  
  c645ae0887db03b6f5a3e043bbb65497
- SHA1
  
  ffd2e5fcd7fa2691f4d95444cb160a6ef001e105
- SHA256
  
  f2d8c6b2d4fdf020a6050dda53651b3895d0cd6fd6a057cb80cba446c5eb1b92
- SHA512
  
  c73ba7a69eca2c40291b67babac0c784e502ec0cbe7e5151e37ef011d41fc4d82cdb0417cd72ce732b55a68a03e50a089912695fc8a2257cf5d300b72c5b7a03
- SSDEEP
  
  192:jv6zrPl/8Vd9EzO8dVU5uUiKGu0eZmaRKghkDplG5MnUAZE/JGLXh21sGlnE:jQ/8WqfiKxD0aR2pcQUAOxC2ZlnE
Score

1^/10
behavioral7 behavioral8
- Target
  
  New folder (14)/FastColoredTextBox.dll
- Size
  
  323KB
- MD5
  
  8610f4d3cdc6cc50022feddced9fdaeb
- SHA1
  
  4b60b87fd696b02d7fce38325c7adfc9e806f650
- SHA256
  
  ac926c92ccfc3789a5ae571cc4415eb1897d500a79604d8495241c19acdf01b9
- SHA512
  
  693d1af1f89470eab659b4747fe344836affa0af8485b0c0635e2519815e5a498f4618ea08db9dcf421aac1069a04616046207ee05b9ed66c0a1c4a8f0bddd09
- SSDEEP
  
  6144:0R0J4lx4/7BA4xvNdcwCOg04j0y5mwZkdmsqmLDi5eNH+Dl1SIP0:0R0J48lAovNd7CO34D4b4eNO
Score

1^/10
behavioral10 behavioral9
- Target
  
  New folder (14)/Guna.UI2.dll
- Size
  
  26KB
- MD5
  
  010ab854260c5469d922a340059b640a
- SHA1
  
  f13b533add162c8ad05a67a56800bc520465eab6
- SHA256
  
  b44fc16233f243801f1c3c98a52be8b0f2d5b8781563fc21eac7c21d3830d381
- SHA512
  
  a64dd150785cf9b9d7b8849c75e34bbb369fcdd21d8454f8be279b9b0a3fceae74a1ad6c41f6c220478c99338e69d58ee17f2a1634d45171a4150a07557e6165
- SSDEEP
  
  384:xOJWqnwmBbNAsW0VES2j0cX6dAl+NWoVzrdcoqOWey/WTWYA6VFHRN7iFDR9zwRT:xulwmBhbVv2wK5Idc9BFCl6l9zc
Score

1^/10
behavioral11 behavioral12
- Target
  
  New folder (14)/Microsoft.Bcl.AsyncInterfaces.xml
- Size
  
  2.7MB
- MD5
  
  9e255e9dd0ec9f4e46fbf5a8728858cb
- SHA1
  
  79f4d72f75991860b7b64ad7c0c5a08c17108c72
- SHA256
  
  29700f18dd846e3d41996d0a48a2cf4ecc5501d0447ab133e2f3223b533a0ac0
- SHA512
  
  961c607733ceaa5e12d6db82861d022300efd363d527d20344e3f463a8347fe2418c6a99c1ed2c6fff4fc518dfd5fbf28485e4253fd4c538b12cf99178760359
- SSDEEP
  
  49152:Rka7Rw1z/jlRsRTTV0Ae/I70nS4pfVkqgy6r3aNkqXfd+/9A1aIHannBBck:jgzLlRsd50AyI7K5JEyUaNkqXf0FjIH1
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral13 behavioral14
- Target
  
  New folder (14)/MonoExploit.exe
- Size
  
  1KB
- MD5
  
  c6b99a6c6f89392a123d12207ecc4a82
- SHA1
  
  f295ff9c6c6ef82c2a99905a2cca5a6bc559f9cc
- SHA256
  
  543a6faca17f4078d76280870bea996094a245cfd07d23dae1c60442e9de72e2
- SHA512
  
  7b64fe6d20d34237aafa1bbf85f7b448fe6440d2634f6728fb7a2fd7e0cbba21445c37edb3c623cec68c1636341616451c48b305ddec7a01dd9ce155d32f0aa0
Score

1^/10
behavioral15 behavioral16
- Target
  
  New folder (14)/MonoExploit.pdb
- Size
  
  695KB
- MD5
  
  195ffb7167db3219b217c4fd439eedd6
- SHA1
  
  1e76e6099570ede620b76ed47cf8d03a936d49f8
- SHA256
  
  e1e27af7b07eeedf5ce71a9255f0422816a6fc5849a483c6714e1b472044fa9d
- SHA512
  
  56eb7f070929b239642dab729537dde2c2287bdb852ad9e80b5358c74b14bc2b2dded910d0e3b6304ea27eb587e5f19db0a92e1cbae6a70fb20b4ef05057e4ac
- SSDEEP
  
  12288:GBja5bBvR8Q0TE2HB0WLmvXbsVG1Gw03RzxNHgKhwFBkjSHXP36RMGy1NqTUO:GBjk38WuBcAbwoA/BkjSHXP36RMG/
Score

1^/10
behavioral17 behavioral18
- Target
  
  New folder (14)/Newtonsoft.Json.xml
- Size
  
  207KB
- MD5
  
  b77d08ac650bdf0a8b8a7b70c469d32b
- SHA1
  
  87d980fcff329484ebb8b4458865564a209448bc
- SHA256
  
  0cbe7c6b83c1d6256f6023c8c795ec2fa94f867ba3345bbc778adac8921c9d7d
- SHA512
  
  e13e58383b313067a52864c582d77f0509625b6abd979f29018783d0933189d1ca53b82479f15bd09ad8cf91d5a9c0d13ff1a90a15c28fdcff2b744b6cb9bc68
- SSDEEP
  
  3072:UoJKdktpEZu0g8Jsimri502z2J9rcQoG2BdKOZYao17bZ4JV/3j/loitkFuS:3zOfpzmm5HgYQoGKKCzlTt
Score

1^/10
behavioral19 behavioral20
- Target
  
  New folder (14)/RestSharp.xml
- Size
  
  20KB
- MD5
  
  ecdfe8ede869d2ccc6bf99981ea96400
- SHA1
  
  2f410a0396bc148ed533ad49b6415fb58dd4d641
- SHA256
  
  accccfbe45d9f08ffeed9916e37b33e98c65be012cfff6e7fa7b67210ce1fefb
- SHA512
  
  5fc7fee5c25cb2eee19737068968e00a00961c257271b420f594e5a0da0559502d04ee6ba2d8d2aad77f3769622f6743a5ee8dae23f8f993f33fb09ed8db2741
- SSDEEP
  
  384:/rMdp9yXOfPfAxR5zwWvYW8a2cyHRN7vCvlbLg:/rMcXP6N6e
Score

1^/10
behavioral21 behavioral22
- Target
  
  New folder (14)/System.Buffers.dll
- Size
  
  3KB
- MD5
  
  1c55860dd93297a6ea2fad2974834c3a
- SHA1
  
  7f4069341c6b62ecfc999a6c2d8a2d5fb59d44f6
- SHA256
  
  2ec7fb12e11f9831e40524427f6d88a3c9ffdd56ccfa81d373467b75b479a578
- SHA512
  
  37fa5d4553ca3165f10e2ffef38fefc0dba4a2dbfa05ab9f09ab87b5f71f30e6d965d2f833f58b50b3bc2529ebe8fb5cc431c264f7b47ad026f5c5a874a6ada1
Score

1^/10
behavioral23 behavioral24
- Target
  
  New folder (14)/System.Buffers.xml
- Size
  
  30KB
- MD5
  
  14f654f887fd3d47faf7289771b82310
- SHA1
  
  dcab5775df76015e5a38c38459ed3814a89259ae
- SHA256
  
  432ec659c664d3c9a94d7fafb27dba7b232bf640bf749dc68fcfa65ae063c7d7
- SHA512
  
  aa4e70aa27b0095b051d8093281fb7a652da62b80aac5e33bf52367184730015fcb6e885cb9513888d9d483e0e4785f40ea2a6323253e9d60d4f0e2d0df99aa0
- SSDEEP
  
  384:Qleaz4VsJrLcTPWi3h8241EEtY+0iIciBxehzsCtZ7U6rtk2i7y1/WEuWkYA6VFl:QIK21TjaveEtYAhzZW60FCl699zV1K
Score

1^/10
behavioral25 behavioral26
- Target
  
  New folder (14)/System.CodeDom.dll
- Size
  
  366KB
- MD5
  
  91af6294c77371e6773c35cfa7edd068
- SHA1
  
  0c24bfafb91ab69a3a7a4bfbd15a9c346341c487
- SHA256
  
  92287105a0987fc6ea2404e799da13f2d57b228a1fa3039a6d0cded00d4344c5
- SHA512
  
  bdfb5c13ee54b88d029bae6a65f932bcf27b1d71a5c373325b2e7484d21d49745c2f3983da85d50aeb6e31febbf0bfcb3cbe46415bae15877c20d54522b65904
- SSDEEP
  
  1536:l2e3vRrYxV4Tm0/Y/LFC9YmXVT2Y3mBhuzRKqn/gCOIFnffP6Ks5ATTglg2PLaAR:lK+c9
Score

1^/10
behavioral27 behavioral28
- Target
  
  New folder (14)/System.CodeDom.xml
- Size
  
  82KB
- MD5
  
  f8c6f0d89113371c56dddec867a608c1
- SHA1
  
  999544b32d1390098d7a0697029bb540c2cd7458
- SHA256
  
  f499d2a444ac9ae2a9e83284216b4b76fec437752dc08967b8ff1ebea28445a9
- SHA512
  
  e4f10291d1738d427e94f67b6d457005fac8cab42e05ae78508b3132ce360ff3dccb739372b2e8aec83d366e1045437ab5bb7dcc60468f28e79fa27952f78dd9
- SSDEEP
  
  1536:ziBEtNwWq02pH6ZafBXoGrriJNNjrgFXfYbsAbYo4bgN0xeR5evOjvjeT4lW1c8q:WBSNTAl6ZcBXoGQ8XWJYo4bgN0xeR5e0
Score

1^/10
behavioral29 behavioral30
- Target
  
  New folder (14)/System.IO.Pipelines.dll
- Size
  
  38KB
- MD5
  
  01753e46bca2e10ca2ab28134fefda62
- SHA1
  
  a3ac1fdc51d25f0af1b572080770616c47999e54
- SHA256
  
  e4949c3acd3e146d48aa16a6713f172488fa4403227632ffc5d1d568ed00f2a3
- SHA512
  
  90343c1aa137ae699b620f10f11fccf6f39d0943e3ea7b4ba75bcd06e34811e76ea2c62edef1c7a0f1ff9e8b8735cfa5ec850abc8f679a0426c3c56af5bbd963
- SSDEEP
  
  384:Y5gObjGtwt25EaiCs9a2E2XZRGvpmhMoo/r9E09mUMV2vVVvVc7X2ccuSOOIuer7:Y2NIMoipVmDKGjJ9tYEy23Xek
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

AgentTesla payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32