Statements (40)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:keyboard
malware |
| gptkbp:alias |
gptkb:AgentTesla
Agent-Tesla |
| gptkbp:canBeBypassedBy |
gptkb:security
|
| gptkbp:canExfiltrate |
data via FTP
data via HTTP data via SMTP |
| gptkbp:canSteal |
screenshots
FTP credentials VPN credentials clipboard data keystrokes application credentials browser passwords email credentials |
| gptkbp:category |
Trojan
infostealer |
| gptkbp:detects |
multiple antivirus vendors
|
| gptkbp:developedBy |
gptkb:.NET
|
| gptkbp:distributedBy |
phishing emails
malicious attachments malicious links |
| gptkbp:firstObserved |
2014
|
| gptkbp:hasFeature |
remote access
screenshot capture password recovery keylogging obfuscation anti-analysis techniques clipboard monitoring auto-update |
| https://www.w3.org/2000/01/rdf-schema#label |
Agent Tesla Keylogger
|
| gptkbp:industry |
various
|
| gptkbp:operatingSystem |
gptkb:Windows
|
| gptkbp:sells |
underground forums
|
| gptkbp:usedFor |
credential theft
information stealing |
| gptkbp:bfsParent |
gptkb:AgentTesla
|
| gptkbp:bfsLayer |
7
|