Extracted

• • Target

    sdss.exe

  • Size

    1.1MB

  • MD5

    4459a7eb4a040e16e462aed9face5033

  • SHA1

    a6c388afbcfd0a2ae2810205be37c354b15feb86

  • SHA256

    dcc72f90c1d3aac382ba8965c68109986771562f49d4112c5be1a0e9b645f621

  • SHA512

    225ffbea03ace2d7a0943864c84ab41600266741b104f0e3a304b96f13a99476a75111f07e0ac906165a2d24fac3ceba60dadfac5a2ecaf8f73c4182a7c586f8

  • SSDEEP

    24576:WfmMv6Ckr7Mny5QbMp1LpiEYKRh/+EeNwEh:W3v+7/5QbMp1LpiEn1+EIwEh

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Suspicious use of SetThreadContext

  behavioral1behavioral2