General
Target

onlylogger.exe

Size

350KB

Sample

210706-sx1j2z1kgn

Score
10/10
MD5

9749a3a101daeb44a788492db61f6bc0

SHA1

599f4e55f2c027ec365fd3ae5f35302458ae88a0

SHA256

602d032373668d54b7f96d31362091272b601cd0f313b251cd88625439fb5a82

SHA512

00e288efa9f999ed94fb86042c51771fbce16101468d9e9f18171c06c005f0d39cd66df68147ee24b546f22296980db125849afc658571c4666aade8017f6f2b

Malware Config
Targets
Target

onlylogger.exe

MD5

9749a3a101daeb44a788492db61f6bc0

Filesize

350KB

Score
10/10
SHA1

599f4e55f2c027ec365fd3ae5f35302458ae88a0

SHA256

602d032373668d54b7f96d31362091272b601cd0f313b251cd88625439fb5a82

SHA512

00e288efa9f999ed94fb86042c51771fbce16101468d9e9f18171c06c005f0d39cd66df68147ee24b546f22296980db125849afc658571c4666aade8017f6f2b

Tags

Signatures

  • OnlyLogger

    Description

    A tiny loader that uses IPLogger to get its payload.

    Tags

  • OnlyLogger Payload

  • Legitimate hosting services abused for malware hosting/C2

    TTPs

    Web Service

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Discovery
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        Score
                        N/A

                        behavioral1

                        Score
                        10/10

                        behavioral2

                        Score
                        10/10