agenttesla | c107e8cf5626efe17feac14120c5e4bc23371e199ef41275b2a502e7cdb0f853 | Triage

Submit
Reports

Overview

overview

Static

static

Xworm-V5.6....6.exe

windows11-21h2-x64

Sharing

General

Target

Xworm-V5.6.zip
Size

31.2MB
Sample

240911-ebskga1bmr
MD5

bd7c34b82da97cd984096707ee565f4c
SHA1

fd9c209a749b198ba985eabb14322b5fe299121e
SHA256

c107e8cf5626efe17feac14120c5e4bc23371e199ef41275b2a502e7cdb0f853
SHA512

593bff665c1d80327f161a5385468e316188b265c94c156823c28e7eb71cafb70715ab92f7801dbdf106db4db7008b790d1e145d89ea6f4ba5a38bd62a599746
SSDEEP

786432:FCSShRDBGmk8bG/DupErOTnCqpETRPCKiAEA9oA:oBhRDBpsHOTnURPCKiAXeA

Score

10^/10

agenttesla stormkitty xworm keylogger spyware stealer trojan

Static task

static1

agenttesla stormkitty xworm

8 signatures

Behavioral task

behavioral1

Sample

Xworm-V5.6/XWorm V5.6.exe

Resource

win11-20240802-en

agenttesla keylogger spyware stealer trojan

windows11-21h2-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Xworm-V5.6/XWorm V5.6.exe
- Size
  
  13.1MB
- MD5
  
  15ed3dfb4a15efe623620bcdca313bdd
- SHA1
  
  8718031f9dc9e437712e958f0ed3a928ab30010a
- SHA256
  
  751d1a9550746309c73de3cd0f03e0fca0424ac8b07c36f0469c0a8442ee9a31
- SHA512
  
  06f43aae25232539342bc929ca68d6098dae72169fe3f69743d0ee332407c37f03c6cd1fe1b7cbeef3386c20fc4c40b954eef73a240eade7566f84a29b89af35
- SSDEEP
  
  196608:6S/BAe1d4ihvy85JhhYc3BSL1kehn4inje:6MyIhhkRka4i
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

agentteslastormkittyxworm

behavioral1

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy