snakekeylogger | af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b
Size

928KB
Sample

221121-jszgkaea7v
MD5

bf45babf34aaf52c47cbca8553c4629c
SHA1

34da6def2b2d3dbb10577eb6a2cad4cb1e82d54d
SHA256

af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b
SHA512

a70cc6917236b40af5886c132588af67da8051dd260a13bf9e4b2d1697ac64234bb7952993b8eec12336553ab93cd67adec0f12537a15de8fccf5683f950e767
SSDEEP

24576:pe3ywOxBVBo0RawizoVCZcjK6NN3A+L74mBfNUstzo:pe3dOxBLfyzoI6NN

Score

10^/10

snakekeylogger keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b.exe

Resource

win10-20220812-en

snakekeylogger keylogger stealer

windows10-1703-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b
- Size
  
  928KB
- MD5
  
  bf45babf34aaf52c47cbca8553c4629c
- SHA1
  
  34da6def2b2d3dbb10577eb6a2cad4cb1e82d54d
- SHA256
  
  af32a56f9c3d38ba2c045043d331749236cadc2f8b86dc376bee0c1e2299448b
- SHA512
  
  a70cc6917236b40af5886c132588af67da8051dd260a13bf9e4b2d1697ac64234bb7952993b8eec12336553ab93cd67adec0f12537a15de8fccf5683f950e767
- SSDEEP
  
  24576:pe3ywOxBVBo0RawizoVCZcjK6NN3A+L74mBfNUstzo:pe3dOxBLfyzoI6NN
Score

10^/10

snakekeylogger keylogger stealer
- Snake Keylogger
  Keylogger and Infostealer first seen in November 2020.
  stealer keylogger snakekeylogger
- Snake Keylogger payload
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

snakekeyloggerkeyloggerstealer

© 2018-2025

Terms | Privacy