TLP
TLP CLEAR
Author
Sebastien TRICAUD
Summary
Agent Tesla RAT is a potent remote access trojan designed to infiltrate systems discreetly. Employed by threat actors, it facilitates unauthorized access to compromised systems, enabling data theft, surveillance, and control. Operating since 2014, it is notorious for its keylogging capabilities, recording keystrokes to gather sensitive information like passwords and credentials. Agent Tesla employs various distribution methods, often exploiting phishing emails and malicious attachments. Once activated, it evades detection through encryption, frequently altering its code to bypass security measures. Its multifunctional nature, including screen capturing and file exfiltration, makes it a preferred choice for cyber espionage and criminal activities.
DATA
TIMELINE
CATEGORY
Malware