agenttesla | 20e7231604f29c76ccf205c2e5d3c34e01092a392110c925eb48868b9b13b0eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

buzs6t.zip
Size

1.3MB
Sample

240823-vjz8aawgqd
MD5

04ed4fd4456339347f665d07fcf0c0b6
SHA1

7f81cb6c53add0a54829eb45fb4d4a28ab1fc808
SHA256

20e7231604f29c76ccf205c2e5d3c34e01092a392110c925eb48868b9b13b0eb
SHA512

cb93fa0d913a27d43cb68c6e5acba0b3c8991cfdc1ae0c9faa820e5de987722a839adabc0bb30c9507763dbc0ffd83eaed0956be886730d29e60714e5c6fb4bb
SSDEEP

24576:ux/dG5BFV1NjaHr0rn7/d8B6Z0uUuVFQQfQuJniceYLlo49bvhFiXDT+89:ux/dgLNjaHoL7/QSUuVFQ9cFpt9zhgi4

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  GalaxPermV3 Cracked.exe
- Size
  
  1.7MB
- MD5
  
  06f6a71b26b5aab539335b2683178cba
- SHA1
  
  58397492fc83ae3840a1a8f4c9d1a5da614010ee
- SHA256
  
  c26ab8fdcbc4caf2026db86ea2f701847252c9ee6eb61f83ff79201daf822821
- SHA512
  
  83cf37150d3b8d9b8244a7aa06721679fc17154a170b822257ff4dc9cbc981dbdf5aa4c323329e4be00eb47d3abac6517b63369c74b29795ae2f71fc20670f7e
- SSDEEP
  
  12288:0wubFNm+M4rg7cAUTqmIchXPfbQE8gUbK///P04ymh66NFCgOz6XL+HPJx:4ml0frQE8Oymh66NFCaQR
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2
- Target
  
  Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c19e9e6a4bc1b668d19505a0437e7f7e
- SHA1
  
  73be712aef4baa6e9dabfc237b5c039f62a847fa
- SHA256
  
  9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
- SHA512
  
  b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
- SSDEEP
  
  49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral3

behavioral4