General
-
Target
1976-63-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
a9989bbfb6066310a2936aaef02038c2
-
SHA1
7734278792b7a094cc21e2bf2051da736b2d6023
-
SHA256
b3b9b2e38f798e9eae6dfd3d9ba4469a24e72e36385fc8c8e4c66193b5b8ecbe
-
SHA512
51ad0d16c261f2a9a58c615723288dabb9fa6a78cccd465166af546ab74fd8c82b68951efcd0aec7730f531ee543af2f4cc4c87007e6e35d3b97edac03fc77d2
-
SSDEEP
1536:NdnVBOsfXRFvva13HyfWbTmyvV56b/UOu5jBqpiOWBK:NdnVMsJFvva13Hs0fvV56b8F1SwBK
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
cp5ua.hyperhost.ua - Port:
587 - Username:
[email protected] - Password:
7213575aceACE@#$ - Email To:
[email protected]
C2
https://api.telegram.org/bot5321688653:AAEI2yqGrOA_-sRZ3xaqutrexraSgFa0AnA/sendMessage?chat_id=5048077662
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
Files
-
1976-63-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections