General
Target

974b5b880750b82e0be5e6d3d6a0fce8.exe

Size

338KB

Sample

211121-tb73gshad5

Score
10/10
MD5

974b5b880750b82e0be5e6d3d6a0fce8

SHA1

59f5c934651660638e0f4db08e61208989eb7529

SHA256

301559f3ba75f3be51e18406fc9fd0e27b04dc4ceeb4fbd719b67a361b2967d5

SHA512

df9d08b1f66b0caaf70dc466e803e252760c04068e130bdf181ac6c645b88e5101cf8d61c5ec4cc552518ec8b9a0195e4fa7f58aee8f91b6de1fa75790890bba

Malware Config
Targets
Target

974b5b880750b82e0be5e6d3d6a0fce8.exe

MD5

974b5b880750b82e0be5e6d3d6a0fce8

Filesize

338KB

Score
10/10
SHA1

59f5c934651660638e0f4db08e61208989eb7529

SHA256

301559f3ba75f3be51e18406fc9fd0e27b04dc4ceeb4fbd719b67a361b2967d5

SHA512

df9d08b1f66b0caaf70dc466e803e252760c04068e130bdf181ac6c645b88e5101cf8d61c5ec4cc552518ec8b9a0195e4fa7f58aee8f91b6de1fa75790890bba

Tags

Signatures

  • OnlyLogger

    Description

    A tiny loader that uses IPLogger to get its payload.

    Tags

  • OnlyLogger Payload

  • Legitimate hosting services abused for malware hosting/C2

    TTPs

    Web Service

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Discovery
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        Score
                        N/A

                        behavioral1

                        Score
                        10/10

                        behavioral2

                        Score
                        10/10