agenttesla | 9c5f193fc0057d06c8be677ab806baaed3508d3e91f6dcce5bd297eaa704494f | Triage

Sharing

General

Target

SceneryPremiumV4.zip
Size

1.6MB
Sample

240819-cj3djaycrb
MD5

1d537e378983726a1ed72c767c82edbc
SHA1

cf7920aacc607903e8a1cdfbf8e39dc1f34e9c22
SHA256

9c5f193fc0057d06c8be677ab806baaed3508d3e91f6dcce5bd297eaa704494f
SHA512

d48dd9ad512f14cb0556bf56fff84a96c217f934e100cbb4b697ad898e5399311f6dbf70916600812628d7de2f4eea967e7e9043c692434b6ec8ae3ce9bba29d
SSDEEP

49152:I57lXYQPS2a8LnPwpDidPuiqzTd+90wKcMi3eh8DfH:OusSPBRcuiqzTETK3fw

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  SceneryPremiumV4.zip
- Size
  
  1.6MB
- MD5
  
  1d537e378983726a1ed72c767c82edbc
- SHA1
  
  cf7920aacc607903e8a1cdfbf8e39dc1f34e9c22
- SHA256
  
  9c5f193fc0057d06c8be677ab806baaed3508d3e91f6dcce5bd297eaa704494f
- SHA512
  
  d48dd9ad512f14cb0556bf56fff84a96c217f934e100cbb4b697ad898e5399311f6dbf70916600812628d7de2f4eea967e7e9043c692434b6ec8ae3ce9bba29d
- SSDEEP
  
  49152:I57lXYQPS2a8LnPwpDidPuiqzTd+90wKcMi3eh8DfH:OusSPBRcuiqzTETK3fw
Score

1^/10
behavioral1 behavioral2
- Target
  
  PrimaryAssets.json
- Size
  
  2B
- MD5
  
  d751713988987e9331980363e24189ce
- SHA1
  
  97d170e1550eee4afc0af065b78cda302a97674c
- SHA256
  
  4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
- SHA512
  
  b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Scenery.dll
- Size
  
  87KB
- MD5
  
  16189384fb9fe8fecf06be71778582cf
- SHA1
  
  ffe164445e7b5f2b5fa3117b1e3490099ff6d588
- SHA256
  
  bb9ce2c978c944c4946e44a7db928ee2a71d9d86897ebc8375c9c609b23781b7
- SHA512
  
  d5ec8e9c27883b015aca6ef8b880730f4701e1d36ef5dd641cc013e75d0dce42100e6386fe8201db61e906c3a75d34aabcd2e5dc023275fe9ea24c7fca7129c6
- SSDEEP
  
  1536:bKx/c8jR+Uc0XSEbjf8MJVKSaNYaPv0/j/TudWjhRZ1B:WZj3SEbjf8MOSaHPv0/TidWj91
Score

1^/10
behavioral5 behavioral6
- Target
  
  SceneryFN Launcher.exe
- Size
  
  1.6MB
- MD5
  
  33c468a10d45c4d09d30282aaeb0d543
- SHA1
  
  e7cb8cb9d4db1bf7c0342f9e5e8ff40cbc8e57da
- SHA256
  
  8eea98d14907d0b1e73f64998ab88edf18be07e1b9554b6076c4f84f05a42e42
- SHA512
  
  5f6756c202696a53d3994d76b5f288e60a5497f130d0606afecb82da5ac355d1372c2976997eb96311c80b2d6187ab0dbbe4fa1ee904526959bb123bbf396a0a
- SSDEEP
  
  49152:z19zp6mePSe6IOu9h57e8RPEkqXfd+/9A9TSanieKd:ZXaSRduz5SoEkqXf0FoSW
Score

10^/10

discovery agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral7 behavioral8
- Target
  
  SceneryFN Launcher.exe.config
- Size
  
  563B
- MD5
  
  467c9988e896a5596d1c64968cdcff73
- SHA1
  
  cb35ca253aba7ed4c89d194e8e8be1c5acc79083
- SHA256
  
  dd2a10593cccb1d99df5d76e63cd5081ba7e3387aed34ded0ef9588aacd4d3a1
- SHA512
  
  1b647af7f01fefc1d4d53f8057fc277e90eea5782472a8e3b809bfbb56a69504570f21874ea1370bd6423083e1f49e869db2c7d39a35b3f176ed81c738e6f43d
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  SceneryFN Launcher.pdb
- Size
  
  39KB
- MD5
  
  3f04a0c3b88cb4d5defbe6cd6d7d33ce
- SHA1
  
  32eff3fcac6d0cbe816a602389ae65c07a961256
- SHA256
  
  3cd4a05d07fd9454dc601695f86c9816b0b98db13acba38ede4b66f1c75cf6ad
- SHA512
  
  9f02b250baab54e8091da248f5e01b3950aa1617e8536515e0b93fba2557a16487f6f6fd9485065734e103003d728144f1110b1f72503df8bf30448a75bbaa5c
- SSDEEP
  
  768:JjpA4C+4NPuHn4dUllQ0I/ocu2t4dJEFMo:BHn4dUllQ02as4dJEFMo
Score

3^/10

discovery
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

agentteslakeyloggerspywarestealertrojan

behavioral9

behavioral10

behavioral11

behavioral12