Overview

overview

10

Static

static

d8bbf2d84a...cf.exe

windows7_x64

1

d8bbf2d84a...cf.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d8bbf2d84a533532848b4895833af517da967466375738988cf5b4c40f7213cf

  • Size

    973KB

  • Sample

    220503-zees1aegaq

  • MD5

    916541e6803dd6f2339ddac435cc28bc

  • SHA1

    088b005106dcf95ccb214902f9bd671bc386ae36

  • SHA256

    d8bbf2d84a533532848b4895833af517da967466375738988cf5b4c40f7213cf

  • SHA512

    c59dcae9683b9863c5b805ff9ce81070ef572c2108d4209b6ad64d005359e27f328a0f8e3acc26c4d85435e3f30d8e4e7fd2c6a8de8df380e961a87c2a6e377d

Score
10/10
massloggerspywarestealer

Malware Config

Targets

    • Target

      d8bbf2d84a533532848b4895833af517da967466375738988cf5b4c40f7213cf

    • Size

      973KB

    • MD5

      916541e6803dd6f2339ddac435cc28bc

    • SHA1

      088b005106dcf95ccb214902f9bd671bc386ae36

    • SHA256

      d8bbf2d84a533532848b4895833af517da967466375738988cf5b4c40f7213cf

    • SHA512

      c59dcae9683b9863c5b805ff9ce81070ef572c2108d4209b6ad64d005359e27f328a0f8e3acc26c4d85435e3f30d8e4e7fd2c6a8de8df380e961a87c2a6e377d

    Score
    10/10
    massloggerspywarestealer

    • MassLogger

      Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.

      stealerspywaremasslogger

    • MassLogger Main Payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks