agenttesla | c62106134a3c533c3331f9cc8ef027716762af12805deb2a6153ed470719c89c | Triage

Submit
Reports

Overview

overview

Static

static

MatrixObfu...I2.dll

windows7-x64

1

MatrixObfu...I2.dll

windows10-2004-x64

1

MatrixObfu...or.exe

windows7-x64

MatrixObfu...or.exe

windows10-2004-x64

Sharing

General

Target

MatrixObfuscator-main.zip
Size

1.4MB
Sample

240629-ar46zswelf
MD5

2f11eef17290b71fa0368bfa368b62d4
SHA1

1243863cb5be4048858d0ac311b0718ae06253e2
SHA256

c62106134a3c533c3331f9cc8ef027716762af12805deb2a6153ed470719c89c
SHA512

95f6878025ead5e8141e9051d1a98facc45798dac3c8207115f979cec18b2c44298488102eed545cfc20a67a790a809d87d2bfd8946b6f0fc455876b355b08bb
SSDEEP

24576:HTQcPTAcySiDNpfVkqgfPyU8/oa8reuaD1bSN1NVVb2vOzSggAh5dc:z70nS4pfVkqgy6r3a0rVbSdwvC

Score

10^/10

agenttesla keylogger spyware stealer trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

MatrixObfuscator-main/Guna.UI2.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

MatrixObfuscator-main/Guna.UI2.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

MatrixObfuscator-main/MatrixObfuscator.exe

Resource

win7-20240508-en

agenttesla keylogger spyware stealer trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral4

Sample

MatrixObfuscator-main/MatrixObfuscator.exe

Resource

win10v2004-20240508-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  MatrixObfuscator-main/Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c97f23b52087cfa97985f784ea83498f
- SHA1
  
  d364618bec9cd6f8f5d4c24d3cc0f4c1a8e06b89
- SHA256
  
  e658e8a5616245dbe655e194b59f1bb704aaeafbd0925d6eebbe70555a638cdd
- SHA512
  
  ecfa83596f99afde9758d1142ff8b510a090cba6f42ba6fda8ca5e0520b658943ad85829a07bf17411e26e58432b74f05356f7eaeb3949a8834faa5de1a4f512
- SSDEEP
  
  49152:cvrqKk8q2gqi2OXCt6kuSw9g8PTNTN/23uxjPHEiCAjFcm:cvrqZr
Score

1^/10
behavioral1 behavioral2
- Target
  
  MatrixObfuscator-main/MatrixObfuscator.exe
- Size
  
  1.0MB
- MD5
  
  19e2f65eca3c110f3ae5549125c5a947
- SHA1
  
  095cebaaac9dcb1fc4e5c2abebe2eefa3c55224f
- SHA256
  
  51ea25cbdd7a6945e22776366fe79bf44c0091a452fc13f9960d29d18fe5ae55
- SHA512
  
  20b0de24b179c70495e40596bdfc34219b143a6835495bbd376a165dc6a8d1fbe763acfc832524b8b9527a590fd6839de150d7b5ce1608983323a377fa9a60a7
- SSDEEP
  
  12288:GFItXjTehty+eu4jphbC/UHa98S16WvImoszux1yGRLHBoPCkUD/u9ID7cdAkLTw:qaV+lGpBS1vvI2GHpL1bvdGHc
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

behavioral3

agentteslakeyloggerspywarestealertrojan

behavioral4

agentteslakeyloggerspywarestealertrojan

© 2018-2024

Terms | Privacy