snakekeylogger | b1aea37a6d2fdd3e3d8c646441891848969d92a2f4b88bfc084b4f7a51a88b28 | Triage

Submit
Reports

Overview

overview

Static

static

Statement.exe

windows7_x64

3

Statement.exe

windows10_x64

Sharing

General

Target

Statement.exe
Size

571KB
Sample

211201-psfmcafba6
MD5

9cee10955eb4330bfba8abb81d83cb98
SHA1

8c80ef728fec74d472edbac2fe8f5abb844a86b3
SHA256

b1aea37a6d2fdd3e3d8c646441891848969d92a2f4b88bfc084b4f7a51a88b28
SHA512

7de20802fca5abd5ac7f7a265cdcac97447619f6de039f965d15d4a6c03d23435eaa279e30c895807f93b823130928df9571b3f67db52f3eda80119e9cd8619b

Score

10^/10

snakekeylogger collection keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

Statement.exe

Resource

win7-en-20211014

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Statement.exe

Resource

win10-en-20211104

snakekeylogger collection keylogger stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

snakekeylogger

Credentials

Protocol: smtp
Host:
mail.agc.com.sa
Port:
587
Username:
vijayakumar.singh@agc.com.sa
Password:
admin@admin$$

Targets

- Target
  
  Statement.exe
- Size
  
  571KB
- MD5
  
  9cee10955eb4330bfba8abb81d83cb98
- SHA1
  
  8c80ef728fec74d472edbac2fe8f5abb844a86b3
- SHA256
  
  b1aea37a6d2fdd3e3d8c646441891848969d92a2f4b88bfc084b4f7a51a88b28
- SHA512
  
  7de20802fca5abd5ac7f7a265cdcac97447619f6de039f965d15d4a6c03d23435eaa279e30c895807f93b823130928df9571b3f67db52f3eda80119e9cd8619b
Score

10^/10

snakekeylogger collection keylogger stealer
- Snake Keylogger
  Keylogger and Infostealer first seen in November 2020.
  stealer keylogger snakekeylogger
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

snakekeyloggercollectionkeyloggerstealer

© 2018-2024

Terms | Privacy