snakekeylogger | 68b354e2ae79d93e08d41a48c6a49a74c880f4baafa6309646b086d4af2abe4c | Triage

Submit
Reports

Overview

overview

Static

static

0949202022.exe

windows7_x64

0949202022.exe

windows10-2004_x64

Sharing

General

Target

0949202022.exe
Size

780KB
Sample

220705-lkmtxafgfr
MD5

8ec22e0e553295fa4014ad56b577f521
SHA1

fc1c91ccd6224fc3b11e1b9628e3954ca7a91934
SHA256

68b354e2ae79d93e08d41a48c6a49a74c880f4baafa6309646b086d4af2abe4c
SHA512

295422958ce14b383a08606a02c48bf86a1414c3242ea898bf1da410d9c61b02b95c84a60036ddb776820b98707f22b5cd685e4e30dbcfcd2e487a7d1a861d63

Score

10^/10

snakekeylogger collection keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

0949202022.exe

Resource

win7-20220414-en

snakekeylogger collection keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0949202022.exe

Resource

win10v2004-20220414-en

snakekeylogger keylogger stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

snakekeylogger

Credentials

Protocol: smtp
Host:
mail.universaleagles-ye.com
Port:
587
Username:
kahtan@universaleagles-ye.com
Password:
UEss@@202122
Email To:
powerofworkissure@gmail.com

Targets

- Target
  
  0949202022.exe
- Size
  
  780KB
- MD5
  
  8ec22e0e553295fa4014ad56b577f521
- SHA1
  
  fc1c91ccd6224fc3b11e1b9628e3954ca7a91934
- SHA256
  
  68b354e2ae79d93e08d41a48c6a49a74c880f4baafa6309646b086d4af2abe4c
- SHA512
  
  295422958ce14b383a08606a02c48bf86a1414c3242ea898bf1da410d9c61b02b95c84a60036ddb776820b98707f22b5cd685e4e30dbcfcd2e487a7d1a861d63
Score

10^/10

snakekeylogger collection keylogger stealer
- Snake Keylogger
  Keylogger and Infostealer first seen in November 2020.
  stealer keylogger snakekeylogger
- Snake Keylogger Payload
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

snakekeyloggercollectionkeyloggerstealer

behavioral2

snakekeyloggerkeyloggerstealer

© 2018-2024

Terms | Privacy