agenttesla | 87b2d1f81317a320bc41ebe9cee0f6b1d9e6bf158d429fe0188a0d66b4e43421 | Triage

Sharing

General

Target

Primordial.exe
Size

5.8MB
Sample

240904-p46mxa1hmd
MD5

1dcc77148be400ddac7152c745ce2957
SHA1

7a7d0d1194b8663c33620769b6f8c1705667d66b
SHA256

87b2d1f81317a320bc41ebe9cee0f6b1d9e6bf158d429fe0188a0d66b4e43421
SHA512

5eefc0a326ca9c3530488f0aa9754046206f15b4196e2b6f6f2adda1fe9f02fa117372cbf106e42f9aa4276c8f8f68c5824660784778add0b5b304e2c0b4d38c
SSDEEP

98304:ZiKscnNZkbxF2JPKavhVt4GviWHAT4iKscnNZkbxFM7K5JEyUa:w6LOIK+1iWHI76LOUKHEyU

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Primordial.exe
- Size
  
  5.8MB
- MD5
  
  1dcc77148be400ddac7152c745ce2957
- SHA1
  
  7a7d0d1194b8663c33620769b6f8c1705667d66b
- SHA256
  
  87b2d1f81317a320bc41ebe9cee0f6b1d9e6bf158d429fe0188a0d66b4e43421
- SHA512
  
  5eefc0a326ca9c3530488f0aa9754046206f15b4196e2b6f6f2adda1fe9f02fa117372cbf106e42f9aa4276c8f8f68c5824660784778add0b5b304e2c0b4d38c
- SSDEEP
  
  98304:ZiKscnNZkbxF2JPKavhVt4GviWHAT4iKscnNZkbxFM7K5JEyUa:w6LOIK+1iWHI76LOUKHEyU
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan