agenttesla | 218f51111d95aff9ac48cdf3a0a9a2095acea67957d96bfb631de75a7a059ef8 | Triage

Sharing

General

Target

ScriptWare.exe
Size

14.1MB
Sample

240829-y7d7hazbna
MD5

b788cb6e8e50414193103a6f52833e45
SHA1

fcc02d922a2fb94d90f8b617e1b2b8e878af382b
SHA256

218f51111d95aff9ac48cdf3a0a9a2095acea67957d96bfb631de75a7a059ef8
SHA512

f693640db3f61d0583f7ac2a7a79956bfb0e22127e3a9659adabdf3bce1615b56361eff02c61b1e490d1a026f4748f48cb6997aba5c1fbac307f30b99b957855
SSDEEP

393216:ycFJi0bdAuKGFrHJ4W9pp/+vMogAuKGFrHJkRAPADY11kSc/zmjx:ti0bAWH1m6

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  ScriptWare.exe
- Size
  
  14.1MB
- MD5
  
  b788cb6e8e50414193103a6f52833e45
- SHA1
  
  fcc02d922a2fb94d90f8b617e1b2b8e878af382b
- SHA256
  
  218f51111d95aff9ac48cdf3a0a9a2095acea67957d96bfb631de75a7a059ef8
- SHA512
  
  f693640db3f61d0583f7ac2a7a79956bfb0e22127e3a9659adabdf3bce1615b56361eff02c61b1e490d1a026f4748f48cb6997aba5c1fbac307f30b99b957855
- SSDEEP
  
  393216:ycFJi0bdAuKGFrHJ4W9pp/+vMogAuKGFrHJkRAPADY11kSc/zmjx:ti0bAWH1m6
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan