Extracted

• • Target

    z25RFQ945894-PDF.exe

  • Size

    1.0MB

  • MD5

    6cfb2ab5bfb52347d141ab2a82ab9ab2

  • SHA1

    cdc4e03046d770a589e09ec9e9ba56f16afce2f5

  • SHA256

    97aed74a1556b5b96eacd10c8ba1e206036d8f6fc35fab882689566c8c16aa6b

  • SHA512

    52d9f6ebd2c088d765d022bfdc037476cece11e63753be3a4aa7bbf0b2d824291d19ecd9aa70ccc503b9c4356ad929c47a4072cb0e65abc3ba0cad3faa359367

  • SSDEEP

    24576:VCdxte/80jYLT3U1jfsWaIsp0CL/rf6pQ:8w80cTsjkWaIs2GzV

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Suspicious use of SetThreadContext

  behavioral1behavioral2