General
-
Target
e8680b7a890458b72e5118b62a6ab97c.exe
-
Size
1.1MB
-
Sample
200713-822qbq1zpj
-
MD5
e8680b7a890458b72e5118b62a6ab97c
-
SHA1
6e0ea318e9c238782466f47b7b3f0ed142a4b26d
-
SHA256
4eba9f4975de4fad373ec97aace6605f55249174c4dfc78c87f5567c98557210
-
SHA512
0273c0e921580832362bac6668c8336fc95aa177f0987bfd62399c619c6c6d1b51122688293726e4bffedbffb97f4f6c45716d142875e0f30ea7f2063a1f53d1
Static task
static1
Behavioral task
behavioral1
Sample
e8680b7a890458b72e5118b62a6ab97c.exe
Resource
win7v200430
Behavioral task
behavioral2
Sample
e8680b7a890458b72e5118b62a6ab97c.exe
Resource
win10
Malware Config
Targets
-
-
Target
e8680b7a890458b72e5118b62a6ab97c.exe
-
Size
1.1MB
-
MD5
e8680b7a890458b72e5118b62a6ab97c
-
SHA1
6e0ea318e9c238782466f47b7b3f0ed142a4b26d
-
SHA256
4eba9f4975de4fad373ec97aace6605f55249174c4dfc78c87f5567c98557210
-
SHA512
0273c0e921580832362bac6668c8336fc95aa177f0987bfd62399c619c6c6d1b51122688293726e4bffedbffb97f4f6c45716d142875e0f30ea7f2063a1f53d1
Score10/10-
MassLogger
Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.
-
MassLogger log file
Detects a log file produced by MassLogger.
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops startup file
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-