agenttesla | deb4f878c419cecd80faad4758cf7f879859f678bd01f211b9ca8d54f7f6bd9b | Triage

Submit
Reports

Overview

overview

Static

static

3

Installer 1.3.exe

windows7-x64

Installer 1.3.exe

windows10-2004-x64

Sharing

General

Target

Installer 1.3.exe
Size

1.5MB
Sample

240810-q6gl8ssbqp
MD5

06efc7d8ce754e5a2ad836be4b373fb4
SHA1

882f13dfe59d5a20c0ee8388cfd591726ca988d6
SHA256

deb4f878c419cecd80faad4758cf7f879859f678bd01f211b9ca8d54f7f6bd9b
SHA512

5d48d38ae49a6143710977da8d433e1221dee1449d1cbe2bd78b33707cb7dc63cefd9384a1a94da030ca4d696967420ab9fff22b9a1824e48e1be431f5a55d8f
SSDEEP

49152:1kQTAD4O1QzsbkNMx7Ch6w3UdeMbtiqxruPTXB/j2:1aDLQIbPw6w3Gjbtiqpu92

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Installer 1.3.exe

Resource

win7-20240708-en

agenttesla discovery keylogger spyware stealer trojan

windows7-x64

6 signatures

1800 seconds

Behavioral task

behavioral2

Sample

Installer 1.3.exe

Resource

win10v2004-20240802-en

agenttesla discovery keylogger spyware stealer trojan

windows10-2004-x64

6 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Installer 1.3.exe
- Size
  
  1.5MB
- MD5
  
  06efc7d8ce754e5a2ad836be4b373fb4
- SHA1
  
  882f13dfe59d5a20c0ee8388cfd591726ca988d6
- SHA256
  
  deb4f878c419cecd80faad4758cf7f879859f678bd01f211b9ca8d54f7f6bd9b
- SHA512
  
  5d48d38ae49a6143710977da8d433e1221dee1449d1cbe2bd78b33707cb7dc63cefd9384a1a94da030ca4d696967420ab9fff22b9a1824e48e1be431f5a55d8f
- SSDEEP
  
  49152:1kQTAD4O1QzsbkNMx7Ch6w3UdeMbtiqxruPTXB/j2:1aDLQIbPw6w3Gjbtiqpu92
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- .NET Reactor proctector
  Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy