agenttesla | 981463945beccba6a57000f63d6d3b86a2dfb065979df527ded79ba44e4fe1f9 | Triage

Submit
Reports

Overview

overview

Static

static

XWorm V5.6....6.exe

windows7-x64

XWorm V5.6....6.exe

windows10-2004-x64

Sharing

General

Target

XWorm V5.6.rar
Size

20.9MB
Sample

240721-f6esjavdpe
MD5

6af6249a4748393c8333a74c6f7b3bb9
SHA1

333c2af55352c2fc7773deaa383bad00538fcc23
SHA256

981463945beccba6a57000f63d6d3b86a2dfb065979df527ded79ba44e4fe1f9
SHA512

7cf4e1603c15eaf8569577b77cb345dbe915f644c1d4390163bb2692bd3f60bd12d4023789ef84311d1f5725afe8e8959192fc98d5496bb162b043ff0bb01ecc
SSDEEP

393216:1yaV6xe39nuxGFX5/NUGjTy/uENWrNI/FTQJyVm2qF3EozmmLMFhdMo+A6xjz:1yk3UxG7FjTCuQWr+QYVwE85o8A6xjz

Score

10^/10

agenttesla stormkitty xworm keylogger spyware stealer trojan

Static task

static1

agenttesla stormkitty xworm

8 signatures

Behavioral task

behavioral1

Sample

XWorm V5.6/Xworm V5.6.exe

Resource

win7-20240704-en

agenttesla keylogger spyware stealer trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

XWorm V5.6/Xworm V5.6.exe

Resource

win10v2004-20240709-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  XWorm V5.6/Xworm V5.6.exe
- Size
  
  14.9MB
- MD5
  
  db51a102eab752762748a2dec8f7f67a
- SHA1
  
  194688ec1511b83063f7b0167ae250764b7591d1
- SHA256
  
  93e5e7f018053c445c521b010caff89e61f61743635db3500aad32d6e495abb2
- SHA512
  
  fb2fb6605a17fedb65e636cf3716568e85b8ea423c23e0513eb87f3a3441e2cabc4c3e6346225a9bf7b81e97470f3ab516feea649a7afb5cdf02faff8d7f09a5
- SSDEEP
  
  196608:k4/BAe1d4ihvy85JhhYc3BSL1kehn4inje:kuyIhhkRka4i
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

agentteslastormkittyxworm

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy