masslogger | b48e56d461f28153c8e38c6f081da6bdd33741eee4674fbb4986df0f84701e8f | Triage

Submit
Reports

Overview

overview

Static

static

doc7647464.exe

windows7_x64

doc7647464.exe

windows10-2004_x64

7

Sharing

General

Target

b48e56d461f28153c8e38c6f081da6bdd33741eee4674fbb4986df0f84701e8f
Size

754KB
Sample

220502-svgtzaaefk
MD5

6d85b7ba1a472195f9dd845646edb5c0
SHA1

0ede49cfa30325512e53f86b5e61fa28f780b60c
SHA256

b48e56d461f28153c8e38c6f081da6bdd33741eee4674fbb4986df0f84701e8f
SHA512

d98889fd753130145cd6d40891cb8d5a3b643a1cab9b3141357572bbd6dafd703c54f75d4d53bd547815fcb194545f43a7f61432d43256285dd0cd42f60f92e9

Score

10^/10

masslogger collection spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

doc7647464.exe

Resource

win7-20220414-en

masslogger collection spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

doc7647464.exe

Resource

win10v2004-20220414-en

collection spyware stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  doc7647464.exe
- Size
  
  2.2MB
- MD5
  
  193368c56423d40d89fceb0179bc6970
- SHA1
  
  4adc069ac5c7faf89bb43de276b4b462ed7ac820
- SHA256
  
  c0b81523511df7b87111c6d4d849f08326e22a15adeb15a203feb8ce5ca56a75
- SHA512
  
  01b98cd188583800776730af1a8f69ed3982ef7d1f9465822fb2cfb566194ee8669f3063a4e001769933f7e34a57103533f054d7b3ad34708c37062983bdb345
Score

10^/10

masslogger collection spyware stealer
- MassLogger
  Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.
  stealer spyware masslogger
- MassLogger Main Payload
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

massloggercollectionspywarestealer

behavioral2

collectionspywarestealer

© 2018-2025

Terms | Privacy