snakekeylogger | 620ed30bcf942eb9148a8d4d3c307b8b[.]exe | Triage

Sharing

General

Target

620ed30bcf942eb9148a8d4d3c307b8b.exe
Size

127KB
MD5

620ed30bcf942eb9148a8d4d3c307b8b
SHA1

60c28f884c831339a791eb0eafd6b22985957de0
SHA256

bff2c1fe365e6a99041f12d9318e437f81d920bd1ed450e2728bc81d3f5846d9
SHA512

c8e7c3f33b8e2cd688ac80dba4f39f40af99e45fb15d7ef3df220f069aa83f534429dea655595cc4e7f3d53cb26f46ab9c78d1d795cc1c2c8c233ddc17293805
SSDEEP

3072:rAgAEzoHj/LDdHdJB+2P4b8oQOeYwBj2OFbY:IaWfS2P4bV3W26b

Score

10^/10

snakekeylogger

Malware Config

Signatures

Snake Keylogger payload 1 IoCs

resource	yara_rule
sample	family_snakekeylogger

Snakekeylogger family
snakekeylogger

Files

620ed30bcf942eb9148a8d4d3c307b8b.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ