agenttesla | efd47979f7ea234efd296e6c8e13eaf5b165214641305d125192039a70f97174 | Triage

Submit
Reports

Overview

overview

Static

static

3

Medal.exe

windows11-21h2-x64

Sharing

General

Target

Medal.exe
Size

156.8MB
Sample

240829-cye7jszapb
MD5

044a9840e86d357ee1af34b6edc69691
SHA1

cfeda270a6a549d3d6236b26856de6c00dcf9757
SHA256

efd47979f7ea234efd296e6c8e13eaf5b165214641305d125192039a70f97174
SHA512

ceb927bf5537dc32d95742e5cdcdaed6eca8a73f91e44499287d71ab96d60ebf3c4bd11533ff47543c8431221e4d575a62a4a83795c0ad10e2ccca9e16ce745e
SSDEEP

49152:imWUbpezrZ7ovvJjDaOyL70nS4pfVkqgy6r3ajMrBm6w30Ii5IG95ZVrxONw1IDM:imBpMlavJjDax7K5JEyUaQdmDDVmBp

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Medal.exe

Resource

win11-20240802-en

agenttesla discovery keylogger spyware stealer trojan

windows11-21h2-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  Medal.exe
- Size
  
  156.8MB
- MD5
  
  044a9840e86d357ee1af34b6edc69691
- SHA1
  
  cfeda270a6a549d3d6236b26856de6c00dcf9757
- SHA256
  
  efd47979f7ea234efd296e6c8e13eaf5b165214641305d125192039a70f97174
- SHA512
  
  ceb927bf5537dc32d95742e5cdcdaed6eca8a73f91e44499287d71ab96d60ebf3c4bd11533ff47543c8431221e4d575a62a4a83795c0ad10e2ccca9e16ce745e
- SSDEEP
  
  49152:imWUbpezrZ7ovvJjDaOyL70nS4pfVkqgy6r3ajMrBm6w30Ii5IG95ZVrxONw1IDM:imBpMlavJjDax7K5JEyUaQdmDDVmBp
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy