agenttesla | c2bb9fa0dc16902993052818ec6267d78edda1fa3d484603fc66625da5666fd0 | Triage

Sharing

General

Target

Enthapy.exe
Size

3.5MB
Sample

240907-tghd1s1hpl
MD5

d71930c5e91a5e39b3645629b2ec11e9
SHA1

cb4d9d7dc4bddfedb85df5f3985786c88ea3dfb9
SHA256

c2bb9fa0dc16902993052818ec6267d78edda1fa3d484603fc66625da5666fd0
SHA512

5852b03559b1d4feaccb90d27904f209a1c92a819763d177fb88b67b8abd4cfbd59d3e80e2d5d560addde850710515e1fb01a41ed35db528e0c538efe5829fda
SSDEEP

98304:y1RvSndGBWsFcYQVArv4MnBpVgNhVRw+GI6:QRKdzUJQVArvb3gRRw+C

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Enthapy.exe
- Size
  
  3.5MB
- MD5
  
  d71930c5e91a5e39b3645629b2ec11e9
- SHA1
  
  cb4d9d7dc4bddfedb85df5f3985786c88ea3dfb9
- SHA256
  
  c2bb9fa0dc16902993052818ec6267d78edda1fa3d484603fc66625da5666fd0
- SHA512
  
  5852b03559b1d4feaccb90d27904f209a1c92a819763d177fb88b67b8abd4cfbd59d3e80e2d5d560addde850710515e1fb01a41ed35db528e0c538efe5829fda
- SSDEEP
  
  98304:y1RvSndGBWsFcYQVArv4MnBpVgNhVRw+GI6:QRKdzUJQVArvb3gRRw+C
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan