Analysis

  • max time kernel
    197s
  • max time network
    208s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    12-05-2022 21:06

General

  • Target

    new.exe

  • Size

    957KB

  • MD5

    7207fa9a4d34f565d145806e433a58cb

  • SHA1

    a381f5e346112b19e559b9e4a9b3986017c847ff

  • SHA256

    7e8c908350a3cc5290846a2fc29f82f87d92f2ab391cfda9052facd690640e58

  • SHA512

    ff8cdc3bf58ca44a0c14175ea9935fd1253c8271d97fdfe5711b1eea7350323813b2430ae9eaf2f85c7e7f5b5529802cc65f749b1c3014516ecfc933dfae4234

Score
10/10

Malware Config

Signatures

  • OnlyLogger

    A tiny loader that uses IPLogger to get its payload.

  • OnlyLogger Payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\new.exe
    "C:\Users\Admin\AppData\Local\Temp\new.exe"
    1⤵
      PID:3148

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3148-130-0x0000000000769000-0x0000000000785000-memory.dmp

      Filesize

      112KB

    • memory/3148-131-0x0000000000620000-0x0000000000650000-memory.dmp

      Filesize

      192KB

    • memory/3148-132-0x0000000000400000-0x00000000004FF000-memory.dmp

      Filesize

      1020KB