agenttesla | 2bd8f998b7d5f9b412cf615494043d492257763a718df3fc122cae1172505290 | Triage

Submit
Reports

Overview

overview

Static

static

5

PURCHASEORDER.exe

windows10-2004-x64

Sharing

General

Target

PURCHASEORDER.exe
Size

1.0MB
Sample

250402-tgwawasl19
MD5

b733e88c43bdb2ce44016a797ddeb3af
SHA1

cf54e118b5050231ff2587f21621eb5b9d3529f1
SHA256

2bd8f998b7d5f9b412cf615494043d492257763a718df3fc122cae1172505290
SHA512

41279ddf73c6eca6977dadd609ee94c42842ea1d3fec0dca8090e7d8e5b7a4aa48df68f6ae2659ecbc1fd0c561db3f76981078fffa5a5585c78407a7ca9edf78
SSDEEP

24576:Su6J33O0c+JY5UZ+XC0kGso6Fa2GMeMmCKUWY:Uu0c++OCvkGs9Fa2BeWQY

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

PURCHASEORDER.exe

Resource

win10v2004-20250314-en

agenttesla discovery keylogger spyware stealer trojan

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

agenttesla

Credentials

Protocol: smtp
Host:
mail.worlorderbillions.top
Port:
587
Username:
[email protected]
Password:
QBD{3zf.F+2F
Email To:
[email protected]

Targets

- Target
  
  PURCHASEORDER.exe
- Size
  
  1.0MB
- MD5
  
  b733e88c43bdb2ce44016a797ddeb3af
- SHA1
  
  cf54e118b5050231ff2587f21621eb5b9d3529f1
- SHA256
  
  2bd8f998b7d5f9b412cf615494043d492257763a718df3fc122cae1172505290
- SHA512
  
  41279ddf73c6eca6977dadd609ee94c42842ea1d3fec0dca8090e7d8e5b7a4aa48df68f6ae2659ecbc1fd0c561db3f76981078fffa5a5585c78407a7ca9edf78
- SSDEEP
  
  24576:Su6J33O0c+JY5UZ+XC0kGso6Fa2GMeMmCKUWY:Uu0c++OCvkGs9Fa2BeWQY
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- Agenttesla family
  agenttesla
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

agenttesladiscoverykeyloggerspywarestealertrojan

© 2018-2025

Terms | Privacy