Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows7_x64 -
resource
win7-20220715-en -
resource tags
arch:x64arch:x86image:win7-20220715-enlocale:en-usos:windows7-x64system -
submitted
24-07-2022 02:28
Static task
static1
Behavioral task
behavioral1
Sample
59e742420a1f471363bdeb8f7b4f94729d1b7fafe61c455399c107a5f54895f2.exe
Resource
win7-20220715-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
59e742420a1f471363bdeb8f7b4f94729d1b7fafe61c455399c107a5f54895f2.exe
Resource
win10v2004-20220721-en
3 signatures
150 seconds
General
-
Target
59e742420a1f471363bdeb8f7b4f94729d1b7fafe61c455399c107a5f54895f2.exe
-
Size
355KB
-
MD5
435dda5db2742db0149dabc440987008
-
SHA1
5896cfd0d2ef1eb2ea13792c33889c78b4c212af
-
SHA256
59e742420a1f471363bdeb8f7b4f94729d1b7fafe61c455399c107a5f54895f2
-
SHA512
b150ddbc9d861c91611235217d6dd8e32525f7beea0e1aeb82065423970dc4c194a1c281c79fd4ce8f525d42193d203591936f24c583a2a24507783d7d39fbd0
Score
10/10
Malware Config
Signatures
-
OnlyLogger
A tiny loader that uses IPLogger to get its payload.
-
OnlyLogger payload 3 IoCs
Processes:
resource yara_rule behavioral1/memory/1748-56-0x0000000000280000-0x00000000002C3000-memory.dmp family_onlylogger behavioral1/memory/1748-57-0x0000000000400000-0x0000000002C3D000-memory.dmp family_onlylogger behavioral1/memory/1748-58-0x0000000000400000-0x0000000002C3D000-memory.dmp family_onlylogger