agenttesla | e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a | Triage

Submit
Reports

Overview

overview

Static

static

5

e46fc5f4cb...0a.exe

windows7-x64

e46fc5f4cb...0a.exe

windows10-2004-x64

Sharing

General

Target

e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a
Size

1.4MB
Sample

241215-bd2pdazkat
MD5

cbd256fce43da7880a316bed084aa702
SHA1

0a7de95f81290921d463ae61707eecdc9dff62f2
SHA256

e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a
SHA512

6e8e5595a3e7c2f9208c0e2e395b6f5a493c5bd7df47b746931cf7412a36c552f9376f57c9ee49f2c1d3358aa567e2abf00015cd7419954ea7cb202b87f075da
SSDEEP

24576:Iu6J33O0c+JY5UZ+XC0kGso6FaYyocfEup+x6XLnTbHUA+IyRWY:iu0c++OCvkGs9FagcfzEx6XzFjY

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a.exe

Resource

win7-20240903-en

agenttesla discovery keylogger spyware stealer trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a.exe

Resource

win10v2004-20241007-en

agenttesla discovery keylogger spyware stealer trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a
- Size
  
  1.4MB
- MD5
  
  cbd256fce43da7880a316bed084aa702
- SHA1
  
  0a7de95f81290921d463ae61707eecdc9dff62f2
- SHA256
  
  e46fc5f4cb5f4a55a2cc38a7e9c2009c3a93f6efe11b022bfec5bbd55733930a
- SHA512
  
  6e8e5595a3e7c2f9208c0e2e395b6f5a493c5bd7df47b746931cf7412a36c552f9376f57c9ee49f2c1d3358aa567e2abf00015cd7419954ea7cb202b87f075da
- SSDEEP
  
  24576:Iu6J33O0c+JY5UZ+XC0kGso6FaYyocfEup+x6XLnTbHUA+IyRWY:iu0c++OCvkGs9FagcfzEx6XzFjY
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Agenttesla family
  agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy