Extracted

• • Target

    INQ No.KP-20-00-PS-PI-INQ-024-PDF.exe

  • Size

    1.1MB

  • MD5

    c6f927ac7ac549d094348e928e13defc

  • SHA1

    e9137c1cf845c96ffff5222178ff7e9d8975ea34

  • SHA256

    40cb9fe6a87b4fd848b988bf094a5323b33d0d4901915ec0d2b4f5af34561926

  • SHA512

    5b08a904c6171f58e4cdc66c624a8bb32cfdd90c51996e6065fcc0b68481136a190553fc1f44b4fbaaf8869e777bfc2a07d980680a6ef57dfab2165995de1b37

  • SSDEEP

    24576:ffmMv6Ckr7Mny5QL6mgR9vt8dXfzUIPDLJ:f3v+7/5QL63vtkrP/J

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Suspicious use of SetThreadContext

  behavioral1behavioral2