General
-
Target
1c5c202227d0b0c0abe7a8ef1e67079069700a7c2aaec0b08bd552d93f3da63a
-
Size
592KB
-
Sample
221128-jdvvtsbd9s
-
MD5
80cfcff11ee2975941fd9b5dcd160f56
-
SHA1
79e0f251d84ba40ec4cd39a3545bc2527679df4e
-
SHA256
1c5c202227d0b0c0abe7a8ef1e67079069700a7c2aaec0b08bd552d93f3da63a
-
SHA512
650adc0113885e680d67c3bbd9ebfedec6afbe9fe17bdc9883c5106387f55a19f8ea7c30f009c0dc306a51406a43b171a533d94e2a3003bad07c7ad5ef7818ea
-
SSDEEP
12288:rO+copbKbfolkpPwDMjKrE5QujFhbzTrq9dBYKiPDkE+M:rCmbKclkpkMurxujjnS9difPDk6
Static task
static1
Behavioral task
behavioral1
Sample
1c5c202227d0b0c0abe7a8ef1e67079069700a7c2aaec0b08bd552d93f3da63a.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
1c5c202227d0b0c0abe7a8ef1e67079069700a7c2aaec0b08bd552d93f3da63a
-
Size
592KB
-
MD5
80cfcff11ee2975941fd9b5dcd160f56
-
SHA1
79e0f251d84ba40ec4cd39a3545bc2527679df4e
-
SHA256
1c5c202227d0b0c0abe7a8ef1e67079069700a7c2aaec0b08bd552d93f3da63a
-
SHA512
650adc0113885e680d67c3bbd9ebfedec6afbe9fe17bdc9883c5106387f55a19f8ea7c30f009c0dc306a51406a43b171a533d94e2a3003bad07c7ad5ef7818ea
-
SSDEEP
12288:rO+copbKbfolkpPwDMjKrE5QujFhbzTrq9dBYKiPDkE+M:rCmbKclkpkMurxujjnS9difPDk6
Score10/10-
Snake Keylogger payload
-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-