onlylogger | 301559f3ba75f3be51e18406fc9fd0e27b04dc4ceeb4fbd719b67a361b2967d5 | Triage

Submit
Reports

Overview

overview

Static

static

974b5b8807...e8.exe

windows7_x64

974b5b8807...e8.exe

windows10_x64

Sharing

General

Target

974b5b880750b82e0be5e6d3d6a0fce8.exe
Size

338KB
Sample

211121-tb73gshad5
MD5

974b5b880750b82e0be5e6d3d6a0fce8
SHA1

59f5c934651660638e0f4db08e61208989eb7529
SHA256

301559f3ba75f3be51e18406fc9fd0e27b04dc4ceeb4fbd719b67a361b2967d5
SHA512

df9d08b1f66b0caaf70dc466e803e252760c04068e130bdf181ac6c645b88e5101cf8d61c5ec4cc552518ec8b9a0195e4fa7f58aee8f91b6de1fa75790890bba

Score

10^/10

onlylogger loader

Static task

static1

Behavioral task

behavioral1

Sample

974b5b880750b82e0be5e6d3d6a0fce8.exe

Resource

win7-en-20211104

onlylogger loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

974b5b880750b82e0be5e6d3d6a0fce8.exe

Resource

win10-en-20211014

onlylogger loader

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  974b5b880750b82e0be5e6d3d6a0fce8.exe
- Size
  
  338KB
- MD5
  
  974b5b880750b82e0be5e6d3d6a0fce8
- SHA1
  
  59f5c934651660638e0f4db08e61208989eb7529
- SHA256
  
  301559f3ba75f3be51e18406fc9fd0e27b04dc4ceeb4fbd719b67a361b2967d5
- SHA512
  
  df9d08b1f66b0caaf70dc466e803e252760c04068e130bdf181ac6c645b88e5101cf8d61c5ec4cc552518ec8b9a0195e4fa7f58aee8f91b6de1fa75790890bba
Score

10^/10

onlylogger loader
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger Payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

onlyloggerloader

behavioral2

onlyloggerloader

© 2018-2024

Terms | Privacy