MASS Logger
MassLogger is a .NET credential stealer. It starts with a launcher that uses simple anti-debugging techniques which can be easily bypassed when identified. This first stage loader eventually XOR-decrypts the second stage assembly which then decrypts, loads and executes the final MassLogger payload.
Last 7 days
| Date | C2 Hosts |
|---|---|
| Mar 6, 2026 | 1 |
Further Reading
Logging is not a bad thing per se. But there are some types of logging that you definitely would not want. We have taken a look at a current example.
njRAT is a remote access trojan that has been around for more than 10 years and still remains one of the most popular RATs among criminal threat actors. This blog post demonstrates how NetworkMiner...
We have been dealing with a new spyware for the past two months, named MassLogger. This advanced keylogger and spyware are distributed via MalSpam attachments and has more features than other prese...
Deep dive into Masslogger's fileless tactics: spreading via .VBE and storing its malicious payload entirely in the Windows Registry. Understand its multi-stage attack and methods for stealing passw...