General
-
Target
1e08d801056079bad2c5b8bb4865a9c3e16b79701b938185888c1e3c9dd4ad4e
-
Size
1003KB
-
Sample
220511-c1fabsdfe5
-
MD5
6a4b684146f3c7ea1b71c133b63d39d2
-
SHA1
53a1e299a86daebf8742082097bbaa22be495872
-
SHA256
1e08d801056079bad2c5b8bb4865a9c3e16b79701b938185888c1e3c9dd4ad4e
-
SHA512
a9120a82ac60117e6e8c62d96a4e497a6ea28f90e10971f20ae082e3c4314f12b813d9d40337bbe36cb13ea1786cc18a4fdc9334f11ce33d05ad22e9b41d00a3
Malware Config
Targets
-
-
Target
1e08d801056079bad2c5b8bb4865a9c3e16b79701b938185888c1e3c9dd4ad4e
-
Size
1003KB
-
MD5
6a4b684146f3c7ea1b71c133b63d39d2
-
SHA1
53a1e299a86daebf8742082097bbaa22be495872
-
SHA256
1e08d801056079bad2c5b8bb4865a9c3e16b79701b938185888c1e3c9dd4ad4e
-
SHA512
a9120a82ac60117e6e8c62d96a4e497a6ea28f90e10971f20ae082e3c4314f12b813d9d40337bbe36cb13ea1786cc18a4fdc9334f11ce33d05ad22e9b41d00a3
Score10/10-
MassLogger
Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.
-
MassLogger Main Payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-