Doc20240626-00073.img Trojan AgentTesla Analysis

Trojan AgentTesla

Updated on 2024-06-27 (2 months ago)

Online Virus Checker	v.1.0.180.174
DB Version:	2024-06-27 14:00:20

Trojan.U.AgentTesla.tr

AgentTesla is a Remote Access Trojan (RAT) built on the .Net framework, primarily utilized to acquire initial access to systems. It's frequently employed within the framework of Malware-As-A-Service (MaaS). Within this illicit business model, individuals referred to as "initial access brokers" (IAB) offer their specialized expertise to criminal groups seeking to exploit corporate networks. As an initial-stage malware, AgentTesla facilitates remote access to a compromised system, subsequently permitting the downloading of more advanced secondary tools, including ransomware.

File	doc20240626-00073.img
Checked	2024-06-27 12:06:51
MD5	bbd27f7caccb56945a4718fa5fbf54db
SHA1	ed4f7110fe52b68a2df93a6d730c750a816979f0
SHA256	98fbf6bdcdeca9ffd574b2bab6da9fe071e86a15860281c048b86c83a166ac35
SHA512	0fc28baefc5071f7ab9d225baca76ec3d3051c57b01d04fe752f5508812d1c8917fa8b2c4716345c3f1dca9e2605055c1587907fc628df008afc8c241f17cd51
PEiD	UDF filesystem data (version 1.5) 'DOC20240626_00073'
File Size	1245184 bytes

Trojan.U.AgentTesla.tr Removal

Gridinsoft has the capability to identify and eliminate Trojan.U.AgentTesla.tr without requiring further user intervention.

Start by downloading Gridinsoft Anti-Malware to your computer.
Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
Click on the "Standard Scan" button.
After the scanning process is finished, click on "Clean Now" to remove any detected threats.
If prompted, restart your system to complete the removal process.

Doc20240626-00073.img Trojan AgentTesla Analysis

Trojan.U.AgentTesla.tr

Trojan.U.AgentTesla.tr Removal

Leave a comment *

Gridinsoft Anti-Malware