agenttesla | a914feb849114b198f068f0309172defadabc8aa5042dadc41ef7b095771f7d5 | Triage

Resubmissions

03-09-2024 13:58

240903-q9w64azdke 10

02-09-2024 15:07

240902-shlbmatfkg 10

Sharing

General

Target

OsussistInstaller.exe
Size

1.6MB
Sample

240902-shlbmatfkg
MD5

192846aab90044b00521f2ba4e99ee03
SHA1

14b8bb92ce9d4046c3b66dc252cfb15fd7070576
SHA256

a914feb849114b198f068f0309172defadabc8aa5042dadc41ef7b095771f7d5
SHA512

119ee834aa21e3c4460b0830d09ffbb1ee4cd1df1692d5324f66dfad5e327d953d82f93ae70b36a2286c6024c012a1ed8e0ebafabc9b31ad696ee7ffa0ee2a08
SSDEEP

24576:jTQcPTAcySiDNpfVkqgfPyU8/oa8reuaDQkqjVnlqud+/2P+AH:H70nS4pfVkqgy6r3askqXfd+/9A

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  OsussistInstaller.exe
- Size
  
  1.6MB
- MD5
  
  192846aab90044b00521f2ba4e99ee03
- SHA1
  
  14b8bb92ce9d4046c3b66dc252cfb15fd7070576
- SHA256
  
  a914feb849114b198f068f0309172defadabc8aa5042dadc41ef7b095771f7d5
- SHA512
  
  119ee834aa21e3c4460b0830d09ffbb1ee4cd1df1692d5324f66dfad5e327d953d82f93ae70b36a2286c6024c012a1ed8e0ebafabc9b31ad696ee7ffa0ee2a08
- SSDEEP
  
  24576:jTQcPTAcySiDNpfVkqgfPyU8/oa8reuaDQkqjVnlqud+/2P+AH:H70nS4pfVkqgy6r3askqXfd+/9A
Score

10^/10

discovery agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan