snakekeylogger | f3dfb1674daa417cb203423b8bcca979b47c97dc71aba3e0dffb995a11b63e33 | Triage

Submit
Reports

Overview

overview

Static

static

SOA_16.06.21.exe

windows7_x64

SOA_16.06.21.exe

windows10_x64

Sharing

General

Target

SOA_16.06.21.exe
Size

859KB
Sample

210616-897s5nr2gj
MD5

60a8ab38ccc6c6d4b2d181bbf3e60cd3
SHA1

02e6b17391b3ec901b33964e9bae087e39e0d126
SHA256

f3dfb1674daa417cb203423b8bcca979b47c97dc71aba3e0dffb995a11b63e33
SHA512

42072fe6e713ca25d33586e058d8c6c2877756173cdb609e7884fa4a9ab878bf8673188da669201b73008cc5d1fc0fcf3125ef59617979e91b80b9accaf526be

Score

10^/10

snakekeylogger keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

SOA_16.06.21.exe

Resource

win7v20210408

snakekeylogger keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

SOA_16.06.21.exe

Resource

win10v20210410

snakekeylogger keylogger stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

snakekeylogger

Credentials

Protocol: smtp
Host:
smtp.logicstica-group.com
Port:
587
Username:
yassin.jawish@logicstica-group.com
Password:
LvlC^A)4

Targets

- Target
  
  SOA_16.06.21.exe
- Size
  
  859KB
- MD5
  
  60a8ab38ccc6c6d4b2d181bbf3e60cd3
- SHA1
  
  02e6b17391b3ec901b33964e9bae087e39e0d126
- SHA256
  
  f3dfb1674daa417cb203423b8bcca979b47c97dc71aba3e0dffb995a11b63e33
- SHA512
  
  42072fe6e713ca25d33586e058d8c6c2877756173cdb609e7884fa4a9ab878bf8673188da669201b73008cc5d1fc0fcf3125ef59617979e91b80b9accaf526be
Score

10^/10

snakekeylogger keylogger stealer
- Snake Keylogger
  Keylogger and Infostealer first seen in November 2020.
  stealer keylogger snakekeylogger
- Snake Keylogger Payload
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

snakekeyloggerkeyloggerstealer

behavioral2

snakekeyloggerkeyloggerstealer

© 2018-2024

Terms | Privacy