agenttesla | d3989d99a77b0fb11bea7672767204b909117390dd04508be3b559c4ac8d0fca | Triage

Submit
Reports

Overview

overview

Static

static

5

kki.exe

windows7-x64

kki.exe

windows10-2004-x64

Sharing

General

Target

Kiriman28.02.25.pdf.rar
Size

543KB
Sample

250228-ggjwmasthx
MD5

4d6dc655b9af9a0eb1595b4f8d45f5b8
SHA1

1b56930d30bc2b1fcf017a8e7bd1be1dea289957
SHA256

d3989d99a77b0fb11bea7672767204b909117390dd04508be3b559c4ac8d0fca
SHA512

3276a6851cacbf3df422602e6e88c7ac78c416f06d35df6a71981eedefd500b7e80652690d312c83b9aff494be495c0e75d00006084cfee865b4250d809f7d88
SSDEEP

12288:EsvYzHtc9/fdu21btiFm8NYwMNhomg0Hhu6bMP5wn:xv4WSFm8NYww9g01bPn

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

kki.exe

Resource

win7-20240903-en

agenttesla discovery keylogger spyware stealer trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

kki.exe

Resource

win10v2004-20250217-en

agenttesla discovery keylogger spyware stealer trojan

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.pgsu.co.id
Port:
587
Username:
[email protected]
Password:
Vecls16@Vezs
Email To:
[email protected]

Targets

- Target
  
  kki.exe
- Size
  
  1.0MB
- MD5
  
  9da25c0299b09fee437c403ce4de65f0
- SHA1
  
  a68420e24ad180942418c95b2e13537b7327f355
- SHA256
  
  13cafe220f24b118aa4bfe7ecc489415c8b593de6552a692ba87b636d04610dc
- SHA512
  
  5b7a80162b0c1c5a0ef817f5e1a698a1c05eab8311d40121502c614a664095f1c2131c28ec743c6c5ac7b352f8d248ae8c5874b36969e36a06c84c8d1a693e31
- SSDEEP
  
  24576:zu6J33O0c+JY5UZ+XC0kGso6Fa5hvz4QCmWY:du0c++OCvkGs9Fa5Nz4QaY
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Agenttesla family
  agenttesla
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral2

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy