agenttesla | 1e50ca3f32a5cfac1877f0887a31067d80ae4f3d5022ea6f29243e5cb3fd3c0c | Triage

Sharing

General

Target

1e50ca3f32a5cfac1877f0887a31067d80ae4f3d5022ea6f29243e5cb3fd3c0c
Size

1.0MB
Sample

240904-2yn7wsyhph
MD5

522ebecbe103a3d2b12d0844014936d6
SHA1

d58d37688ac66d45d3ad3e8c103cf5651a6ef593
SHA256

1e50ca3f32a5cfac1877f0887a31067d80ae4f3d5022ea6f29243e5cb3fd3c0c
SHA512

3b861a2f6f88dc91f3717353653758c289e875ac79072847688767cfd7b700844d850880d1754d1c6f896e84f6abd30f33b0cfcca998db6161ca8f3a62e3b169
SSDEEP

24576:D1KK6ImbokiLRq3dieSQiua9oxaAPaNTEAvest/EGw634DJJtxLjr:DcCoo5L4Nn/s+xRPaqs2v63aJJbT

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c19e9e6a4bc1b668d19505a0437e7f7e
- SHA1
  
  73be712aef4baa6e9dabfc237b5c039f62a847fa
- SHA256
  
  9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
- SHA512
  
  b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
- SSDEEP
  
  49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score

1^/10
behavioral1 behavioral2
- Target
  
  Spoofer Source.exe
- Size
  
  400KB
- MD5
  
  33ca7f9336469266f0c015e6e48daa46
- SHA1
  
  12e1cb4de5bd69235b5bff14ce4f7f347c6188e9
- SHA256
  
  706563ac4e3e3ebced44a80c0998de1fca1a602e598d2648e3e1094805cf7555
- SHA512
  
  ca8523ee29069143c4de271eb2ef99b30b4c12ffc9a1b8ea3be2d5a9db439770a8dd4acc96036f0f0c36a59ed516675c5a1bc360112e96e9da56d571a0bbecc9
- SSDEEP
  
  6144:Deg1iF+DLYUdM1/6AQF1wJb8BFJBxFPystpsYnWVoesoej9dhZsENKhG3:Deg1s+u/FQFWbm1ysfsskkxdRKh
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral4

agenttesladiscoverykeyloggerspywarestealertrojan