onlylogger | dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...12.exe

windows7-x64

JaffaCakes...12.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212
Size

292KB
Sample

241230-x9d4vaxpgv
MD5

24676b75ae396cd2e4126febb9f1fff4
SHA1

c744ac9f1d59a25316f5891c898fbc54c02b8947
SHA256

dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212
SHA512

9522a4f38ccec7322868f761f8c28ec12332385ac79991080dd9e593f1b3dc7b9c2ee11bbe49dfd189da081325f3911d4b22cd37e313d1de808a7443febb3996
SSDEEP

3072:W/r5cRoyOg9E13LUjMR80A/iFFjC/RndHrTAOvX0Pt6wOdCeX09qT1tv7b/hWHAe:WVgy1UjRuFj+dLTAIat6wvl9qr7O

Score

10^/10

onlylogger discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212.exe

Resource

win7-20240903-en

onlylogger discovery loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212.exe

Resource

win10v2004-20241007-en

onlylogger discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212
- Size
  
  292KB
- MD5
  
  24676b75ae396cd2e4126febb9f1fff4
- SHA1
  
  c744ac9f1d59a25316f5891c898fbc54c02b8947
- SHA256
  
  dd2834b25829a26134eca7d52e85a3b2a755278615e95f171697d38fd7811212
- SHA512
  
  9522a4f38ccec7322868f761f8c28ec12332385ac79991080dd9e593f1b3dc7b9c2ee11bbe49dfd189da081325f3911d4b22cd37e313d1de808a7443febb3996
- SSDEEP
  
  3072:W/r5cRoyOg9E13LUjMR80A/iFFjC/RndHrTAOvX0Pt6wOdCeX09qT1tv7b/hWHAe:WVgy1UjRuFj+dLTAIat6wvl9qr7O
Score

10^/10

onlylogger discovery loader
- OnlyLogger
  A tiny loader that uses IPLogger to get its payload.
  loader onlylogger
- Onlylogger family
  onlylogger
- OnlyLogger payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

onlyloggerdiscoveryloader

behavioral2

onlyloggerdiscoveryloader

© 2018-2025

Terms | Privacy