Cracking AgentTesla: Revealing Steganographic Payload
Tags
attack-pattern: Data Malware - T1587.001 Malware - T1588.001 Steganography - T1001.002 Steganography - T1406.001 Steganography - T1027.003 Tool - T1588.002
Show in Graph
Common Information
Type Value
UUID 569e12bd-a717-4576-99c3-7eafc58a31d2
Fingerprint c160b2885b307b9
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 5, 2024, 6:05 p.m.
Added to db Sept. 5, 2024, 8:49 p.m.
Last updated Sept. 7, 2024, 11:06 a.m.
Headline Cracking AgentTesla: Revealing Steganographic Payload
Title Cracking AgentTesla: Revealing Steganographic Payload
Detected Hints/Tags/Attributes 21/1/6
Source URLs
Redirection Url
Details Source https://medium.com/@shreyash_tambe/cracking-agenttesla-revealing-steganographic-payload-37f5c0c54a8d?source=rss------malware-5
Details Source https://medium.com/@shreyash_tambe/cracking-agenttesla-revealing-steganographic-payload-37f5c0c54a8d?source=rss------reverse_engineering-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 171 Malware on Medium https://medium.com/feed/tag/malware 2024-08-30 22:08
Details 172 Reverse Engineering on Medium https://medium.com/feed/tag/reverse-engineering 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 1 
coyvy.exe
Details File 1 
pathologist.dll
Details File 1 
ar.reg
Details File 3 
gamma.dll
Details File 5 
tyrone.dll
Details sha256 1 
c4e8c058d4f4a9976ca89a275963e6c4e2b3a2a7e90ad2dd095e173c2f5859bf