agenttesla | 9a9d325dff86bf2b672b9aa003e29b024f6c7fa1c158e2b704affbcb4568b036 | Triage

Submit
Reports

Overview

overview

Static

static

5

SUN ACE TB...oc.exe

windows7-x64

SUN ACE TB...oc.exe

windows10-2004-x64

Sharing

General

Target

SUN ACE TBN VESSEL DETAILS.doc.exe
Size

1.2MB
Sample

241008-e1epxaydnq
MD5

56e68d8bcd3f1cdde361be4cb038e0fe
SHA1

96c6e802499baf1530dde3720184a5d0044b06fb
SHA256

9a9d325dff86bf2b672b9aa003e29b024f6c7fa1c158e2b704affbcb4568b036
SHA512

163279de5e0836037496471a5ce76ec36f6bd66fd67dc8e852d5d2a3d2e542347f867722a2cc5015167793d27eeab1d116ce224ed2b24ad1ba9a1c118b86656a
SSDEEP

24576:ffmMv6Ckr7Mny5QL+eYpzH2he1mlAdEq91nNlU:f3v+7/5QLoFH2h+5EUnNlU

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

SUN ACE TBN VESSEL DETAILS.doc.exe

Resource

win7-20240903-en

agenttesla discovery keylogger spyware stealer trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

SUN ACE TBN VESSEL DETAILS.doc.exe

Resource

win10v2004-20241007-en

agenttesla discovery keylogger spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  SUN ACE TBN VESSEL DETAILS.doc.exe
- Size
  
  1.2MB
- MD5
  
  56e68d8bcd3f1cdde361be4cb038e0fe
- SHA1
  
  96c6e802499baf1530dde3720184a5d0044b06fb
- SHA256
  
  9a9d325dff86bf2b672b9aa003e29b024f6c7fa1c158e2b704affbcb4568b036
- SHA512
  
  163279de5e0836037496471a5ce76ec36f6bd66fd67dc8e852d5d2a3d2e542347f867722a2cc5015167793d27eeab1d116ce224ed2b24ad1ba9a1c118b86656a
- SSDEEP
  
  24576:ffmMv6Ckr7Mny5QL+eYpzH2he1mlAdEq91nNlU:f3v+7/5QLoFH2h+5EUnNlU
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy