agenttesla | 7a750afb033321a6f6437908c45d67b4df21b29aa1c94c523f45126fa98c8d7f | Triage

Sharing

General

Target

7a750afb033321a6f6437908c45d67b4df21b29aa1c94c523f45126fa98c8d7f
Size

889KB
Sample

240828-2tfd7asemj
MD5

b7b4774059eb8308491cff852a2a0fde
SHA1

c1ec3d63011e74cbd44733dd4d24050cc338f133
SHA256

7a750afb033321a6f6437908c45d67b4df21b29aa1c94c523f45126fa98c8d7f
SHA512

168fa3ad1208fc937b3bdc9fca12ba5506bdf10b42e7a8f9249ca4253951f1e51e0d19c0d57cd31987f9bbe5914c09d95ee61d543483206063ea0ebe9de14a09
SSDEEP

24576:t/MsL9Xd+/KriwPyQ7oLcFd9KdVIhQ3Lz0Unh2oC5:t0s9N+Kriw6QELcFEZ7zkZ

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c97f23b52087cfa97985f784ea83498f
- SHA1
  
  d364618bec9cd6f8f5d4c24d3cc0f4c1a8e06b89
- SHA256
  
  e658e8a5616245dbe655e194b59f1bb704aaeafbd0925d6eebbe70555a638cdd
- SHA512
  
  ecfa83596f99afde9758d1142ff8b510a090cba6f42ba6fda8ca5e0520b658943ad85829a07bf17411e26e58432b74f05356f7eaeb3949a8834faa5de1a4f512
- SSDEEP
  
  49152:cvrqKk8q2gqi2OXCt6kuSw9g8PTNTN/23uxjPHEiCAjFcm:cvrqZr
Score

1^/10
behavioral1 behavioral2
- Target
  
  WindowsFormsApp18.exe
- Size
  
  240KB
- MD5
  
  fd8c214bb2b242060472031f5ec37a7d
- SHA1
  
  438555a16601ac3e1692ad92afd5fbedc3e6da66
- SHA256
  
  c54534bfe9a8776aee3e20d58cb1fb9c35a6af56e0b7076d93dcb4de13d3dd0c
- SHA512
  
  61e6cabe428bc731e60998003fa70f5d43bd799f1f16654a366699ce11a5f54d3fdaabbdce0283b95f88cd04ba38d31f084ba00372630180e3ed654c2dfc2ce6
- SSDEEP
  
  6144:E4+d66F9VPZ0bF3z13d9QEaulALRPyjMlJSfJWKQ:u196tZ3d9RafeMlcJ
Score

10^/10

discovery agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

agenttesladiscoverykeyloggerspywarestealertrojan