agenttesla | 0afeaca1bb808ec9331ac11bc950167849cbbe0ba1aa39fd2b086cf475e87a1e | Triage

Submit
Reports

Overview

overview

Static

static

BassemInjector.zip

windows11-21h2-x64

Sharing

Copy URL Twitter E-mail

General

Target

BassemInjector.zip
Size

5.0MB
Sample

240901-zy8kes1gqr
MD5

8b2a3d9cc8cfa68f97347742cedf7991
SHA1

3a90195d5fb8188fec1185099bce9430d6e1c3f2
SHA256

0afeaca1bb808ec9331ac11bc950167849cbbe0ba1aa39fd2b086cf475e87a1e
SHA512

d175a77f3716789285cac7ab59652bfca590f1b734afb3e6d73a5855bdaa25ea32793eefd1409b388850d04adea21b3a6f9703d35f36699b9a39711596a6dad7
SSDEEP

98304:IWW0m4E2GKLkzFLqk3muz4kVu8cDtRaCKXr0ia+uAmidvbsxga5LVPO:xXmcGek5mk2uz3XQvan70ia+NzsxgaVG

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

BassemInjector.zip

Resource

win11-20240802-en

agenttesla discovery keylogger spyware stealer trojan

windows11-21h2-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  BassemInjector.zip
- Size
  
  5.0MB
- MD5
  
  8b2a3d9cc8cfa68f97347742cedf7991
- SHA1
  
  3a90195d5fb8188fec1185099bce9430d6e1c3f2
- SHA256
  
  0afeaca1bb808ec9331ac11bc950167849cbbe0ba1aa39fd2b086cf475e87a1e
- SHA512
  
  d175a77f3716789285cac7ab59652bfca590f1b734afb3e6d73a5855bdaa25ea32793eefd1409b388850d04adea21b3a6f9703d35f36699b9a39711596a6dad7
- SSDEEP
  
  98304:IWW0m4E2GKLkzFLqk3muz4kVu8cDtRaCKXr0ia+uAmidvbsxga5LVPO:xXmcGek5mk2uz3XQvan70ia+NzsxgaVG
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy