Extracted

• • Target

    1ea3b00d00461c1ee3c576e21dcda173.exe

  • Size

    1.1MB

  • MD5

    1ea3b00d00461c1ee3c576e21dcda173

  • SHA1

    282298785faf46420d155cba5b9a3225522330c7

  • SHA256

    1503c743ab140a8432b5e5b11b1af03090df97fb1c4819c38996862dd9f023d2

  • SHA512

    b387291bf3d696cab49aa079c06e62e1c873ffcb1373802d1d4f2dd4bad98308befb694c1f30e9af9e9c1b04b26f092479b0fe289618cf2a2dcc4e5595d4a23c

  • SSDEEP

    24576:ffmMv6Ckr7Mny5QLR5ffnXCei8F/ugZA5v7zlZz:f3v+7/5QLXfvFGVn/

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Suspicious use of SetThreadContext

  behavioral1behavioral2