Extracted

• • Target

    a459ae41a0e5df32eec7b77a2291dc746ccf2b495a2ce9e0305efbfc021fcd23

  • Size

    1.0MB

  • MD5

    5bcb22fd86f5d77d9a210de7aaa1285b

  • SHA1

    77860cd889393207878b83b81d4af8dea17e427f

  • SHA256

    a459ae41a0e5df32eec7b77a2291dc746ccf2b495a2ce9e0305efbfc021fcd23

  • SHA512

    ce0efbed5c7908e1c94a0532e7bb1d4aa0d4303051184595c6e309a5630cd7956cfb6d585b37b5b6fe92407bd6b97283d9e54e912df255182495afd05001e0a2

  • SSDEEP

    24576:6tb20pkaCqT5TBWgNQ7a+r7uBP1N6Wag8xAJK6A:nVg5tQ7a++BJCxn5

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Agenttesla family

    agenttesla

  • Suspicious use of SetThreadContext

  behavioral1behavioral2