Agent Tesla Indicators of Compromise (IOC) Feed

SUMMARY :

Agent Tesla is a sophisticated malware functioning primarily as a keylogger, capable of capturing sensitive data like usernames and passwords from infected computers. It can also take screenshots, extract credentials from various software, and act as a remote access tool. The malware's versatility allows it to exfiltrate data through multiple channels, including FTP, email, and Telegram, making it particularly effective at bypassing standard security measures. First identified around 2014, Agent Tesla has evolved to become more adept at evading detection and expanding its functionality. It is typically spread through phishing emails, malicious attachments, or compromised websites. Its ease of customization and adaptability make it a preferred choice among cybercriminals, posing a significant threat to cybersecurity.

OPENCTI LABELS :

keylogger,agent tesla,remote access tool


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Agent Tesla Indicators of Compromise (IOC) Feed