masslogger | fe20e8e7fb4c597777c529cb419b0eec1f3cf6d5c5bfdea31e3df0b1014da7a9 | Triage

Submit
Reports

Overview

overview

Static

static

MLY.exe

windows7_x64

MLY.exe

windows10_x64

Sharing

General

Target

MLY.exe
Size

1.1MB
Sample

200713-r4qtfp3qea
MD5

02ef1facb39aca762039fddc98190813
SHA1

50b03f32e5581fb01e4a6d86c1a3c0757079a784
SHA256

fe20e8e7fb4c597777c529cb419b0eec1f3cf6d5c5bfdea31e3df0b1014da7a9
SHA512

bae96c5f9f1a2f40931b894a17bb469461239cc0af297488e04b1cdc89934019777f7a0243322fed60f16ad8e548fd1ec45e443e013b90d5f00412f4c43201c5

Score

10^/10

masslogger spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

MLY.exe

Resource

win7

stealer spyware masslogger

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

MLY.exe

Resource

win10v200430

spyware stealer masslogger

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  MLY.exe
- Size
  
  1.1MB
- MD5
  
  02ef1facb39aca762039fddc98190813
- SHA1
  
  50b03f32e5581fb01e4a6d86c1a3c0757079a784
- SHA256
  
  fe20e8e7fb4c597777c529cb419b0eec1f3cf6d5c5bfdea31e3df0b1014da7a9
- SHA512
  
  bae96c5f9f1a2f40931b894a17bb469461239cc0af297488e04b1cdc89934019777f7a0243322fed60f16ad8e548fd1ec45e443e013b90d5f00412f4c43201c5
Score

10^/10

stealer spyware masslogger
- MassLogger
  Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.
  stealer spyware masslogger
- MassLogger log file
  Detects a log file produced by MassLogger.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
- Drops startup file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

stealerspywaremasslogger

behavioral2

spywarestealermasslogger

© 2018-2025

Terms | Privacy