404keylogger | ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77 | Triage

Submit
Reports

Overview

overview

Static

static

5

ced11cfdf5...77.exe

windows7_x64

ced11cfdf5...77.exe

windows10-2004_x64

Sharing

General

Target

ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77
Size

1.2MB
Sample

220701-dmpsaabch5
MD5

fc3fc7632950b12995b35f96eb6e09d1
SHA1

b111084113f7b9aba6c0f8f3cb03f1972c7433aa
SHA256

ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77
SHA512

18b6ef3a6ce18972034805fe7cbc62c802335b2dc909d9ecf54c7e36c9f6707d3a5b862768a7a15e7c58529d42168f165e0f82398148dba3922adf724f9bda9c

Score

10^/10

404keylogger collection keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77.exe

Resource

win7-20220414-en

404keylogger collection keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77.exe

Resource

win10v2004-20220414-en

404keylogger collection keylogger stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77
- Size
  
  1.2MB
- MD5
  
  fc3fc7632950b12995b35f96eb6e09d1
- SHA1
  
  b111084113f7b9aba6c0f8f3cb03f1972c7433aa
- SHA256
  
  ced11cfdf5fe272660ba907fa8733c3054787c9215c514421035c22617c4fe77
- SHA512
  
  18b6ef3a6ce18972034805fe7cbc62c802335b2dc909d9ecf54c7e36c9f6707d3a5b862768a7a15e7c58529d42168f165e0f82398148dba3922adf724f9bda9c
Score

10^/10

404keylogger collection keylogger stealer
- 404 Keylogger
  Information stealer and keylogger first seen in 2019.
  stealer keylogger 404keylogger
- 404 Keylogger Main Executable
- Drops startup file
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

404keyloggercollectionkeyloggerstealer

behavioral2

404keyloggercollectionkeyloggerstealer

© 2018-2024

Terms | Privacy