onlylogger | 4b48994ace29b4a93669f1856a28c0b7d0c4a1f5155b30fd11de85dd350f5bd5 | Triage

Submit
Reports

Overview

overview

Static

static

HEUR-Troja...a9.exe

windows7-x64

HEUR-Troja...a9.exe

windows10-2004-x64

Sharing

General

Target

HEUR-Trojan.Win32.Bsymem.gen-4b48994ace29b4a9.exe
Size

401KB
Sample

230105-axxdbsab63
MD5

676f6fc4947933bb287a2138a9c478fa
SHA1

23986f7cf5c250177d849a48cd9bd43e167ce214
SHA256

4b48994ace29b4a93669f1856a28c0b7d0c4a1f5155b30fd11de85dd350f5bd5
SHA512

1148a1aafceee1a78d100cb56f391254ca64042f04933076cbd82009032918e980bcdaf60f0ca053b98ac1a6fa5ba619611beb22f2d94f11335ac5a86af1daa7
SSDEEP

6144:mxfoVsYxTvrreG/PnKcdlQPnTEtHPK8MtSc7lBPFDPbWj5c4yac:m01TneG/PnKcdanoeDCj

Score

10^/10

onlylogger loader

Static task

static1

Behavioral task

behavioral1

Sample

HEUR-Trojan.Win32.Bsymem.gen-4b48994ace29b4a9.exe

Resource

win7-20221111-en

onlylogger loader

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

HEUR-Trojan.Win32.Bsymem.gen-4b48994ace29b4a9.exe

Resource

win10v2004-20220812-en

onlylogger loader

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  HEUR-Trojan.Win32.Bsymem.gen-4b48994ace29b4a9.exe
- Size
  
  401KB
- MD5
  
  676f6fc4947933bb287a2138a9c478fa
- SHA1
  
  23986f7cf5c250177d849a48cd9bd43e167ce214
- SHA256
  
  4b48994ace29b4a93669f1856a28c0b7d0c4a1f5155b30fd11de85dd350f5bd5
- SHA512
  
  1148a1aafceee1a78d100cb56f391254ca64042f04933076cbd82009032918e980bcdaf60f0ca053b98ac1a6fa5ba619611beb22f2d94f11335ac5a86af1daa7
- SSDEEP
  
  6144:mxfoVsYxTvrreG/PnKcdlQPnTEtHPK8MtSc7lBPFDPbWj5c4yac:m01TneG/PnKcdanoeDCj
Score

10^/10

onlylogger loader
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- OnlyLogger payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

onlyloggerloader

behavioral2

onlyloggerloader

© 2018-2024

Terms | Privacy