Extracted

• • Target

    e4f2916c6c50ca267e420849c924ffb2e9659fba24017351294183dd7fe9ae3dN

  • Size

    569KB

  • MD5

    0e71783ad510b8e65efe6e6ccb0a74f0

  • SHA1

    66c65a719edfd2217d781421ee94086e108793a3

  • SHA256

    e4f2916c6c50ca267e420849c924ffb2e9659fba24017351294183dd7fe9ae3d

  • SHA512

    63c6604a9af3032a94fce1b62732ed2072611800118773caa9aacbf12dc3ccd52881ef94aead189831359dc300fb671de9e60dc3728f3929ad43417bed26e977

  • SSDEEP

    12288:gerxL2jjK7gVnYff0aiet53E7aepYOEB0SYhha3dAh46AFiJoTB:gHj1M7H0FpYOyluYd

  Score

  10^/10

  agenttesladiscoverykeyloggerspywarestealertrojan

  • AgentTesla

    Agent Tesla is a remote access tool (RAT) written in visual basic.

    keyloggertrojanstealerspywareagenttesla

  • Agenttesla family

    agenttesla

  • AgentTesla payload

  • Suspicious use of SetThreadContext

  behavioral1behavioral2