Extracted

Extracted

• • Target

    5c53c9ed0e7e5258f5a1ff3c9532f93d69f751eea71aeb4120892cc40d71b3b1

  • Size

    706KB

  • MD5

    1221cf82c65577bfb4f642fb442fbb62

  • SHA1

    ace62f69e307229eb11c6e4bae7ec098eadac59c

  • SHA256

    5c53c9ed0e7e5258f5a1ff3c9532f93d69f751eea71aeb4120892cc40d71b3b1

  • SHA512

    02e27f3c17ec0459b8059dd6e2279d9e9ee2f5a9ea670e69b6ce3ca9b2fee4dd905b4b2e2dca1f9df1f04b58037f206adbf09e6a39ed3bf13aa2c3980426e6c3

  Score

  10^/10

  massloggercollectionransomwarespywarestealer

  • MassLogger

    Masslogger is a .NET stealer targeting passwords from browsers, email and cryptocurrency clients.

    stealerspywaremasslogger

  • MassLogger log file

    Detects a log file produced by MassLogger.

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2