agenttesla | 1606c93f8a1e47d2a9cfa15c9b26cdb999a2d8f9c8dbe9cb633c57cdb305d3f8 | Triage

Sharing

General

Target

a724fd369a0f82ca8c84ae8764d473f0N.exe
Size

3.9MB
Sample

240903-z78lsaxdpp
MD5

a724fd369a0f82ca8c84ae8764d473f0
SHA1

f922cf16d202c39cdeadc9295ac092ea84e7f50d
SHA256

1606c93f8a1e47d2a9cfa15c9b26cdb999a2d8f9c8dbe9cb633c57cdb305d3f8
SHA512

76904843df30c2d83509f7f9f10a9dac356b3e591fbe44df01749031e828c08c4f216f1f4c7c5d4ef493f0b1ae4f80b54efa2871820a0f19f8cfbf343f797c77
SSDEEP

98304:EAgdiBOVuZAgdiBOVuJlcwIT4bNJFY3OqtIkqXf0FnYeU:xgdqOVtgdqOVOcwjBHY4kSIYe

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  a724fd369a0f82ca8c84ae8764d473f0N.exe
- Size
  
  3.9MB
- MD5
  
  a724fd369a0f82ca8c84ae8764d473f0
- SHA1
  
  f922cf16d202c39cdeadc9295ac092ea84e7f50d
- SHA256
  
  1606c93f8a1e47d2a9cfa15c9b26cdb999a2d8f9c8dbe9cb633c57cdb305d3f8
- SHA512
  
  76904843df30c2d83509f7f9f10a9dac356b3e591fbe44df01749031e828c08c4f216f1f4c7c5d4ef493f0b1ae4f80b54efa2871820a0f19f8cfbf343f797c77
- SSDEEP
  
  98304:EAgdiBOVuZAgdiBOVuJlcwIT4bNJFY3OqtIkqXf0FnYeU:xgdqOVtgdqOVOcwjBHY4kSIYe
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan