General
-
Target
b7cc6fa087d322f6075d16ada8332f3c.exe
-
Size
767KB
-
Sample
221128-jgd2gsbf51
-
MD5
b7cc6fa087d322f6075d16ada8332f3c
-
SHA1
2e1e65d0efdca11b5067105d5c458cb19eedaa2e
-
SHA256
4fc184671e57d103f1d4d2522d561c4e36d0eb1b221c4f05e5e77e044fbc3570
-
SHA512
84a38226f9fb0d69b7b58cf05e5a76f4d0fd2ae3c4002a6dfc93e1d7d1abd116773872abc22a45108fc6e44297b2f16e82bb0e74e5f2a384ef0c5218bfea3d65
-
SSDEEP
12288:lTGYi0MDFPIAx2HTuBjBSe8LZ8PIIXfK1niI9QFPsIg95lvTHRyoYM:lDCSG6Z8LXf8iIiFsIgvpjRpYM
Static task
static1
Behavioral task
behavioral1
Sample
b7cc6fa087d322f6075d16ada8332f3c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b7cc6fa087d322f6075d16ada8332f3c.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
b7cc6fa087d322f6075d16ada8332f3c.exe
-
Size
767KB
-
MD5
b7cc6fa087d322f6075d16ada8332f3c
-
SHA1
2e1e65d0efdca11b5067105d5c458cb19eedaa2e
-
SHA256
4fc184671e57d103f1d4d2522d561c4e36d0eb1b221c4f05e5e77e044fbc3570
-
SHA512
84a38226f9fb0d69b7b58cf05e5a76f4d0fd2ae3c4002a6dfc93e1d7d1abd116773872abc22a45108fc6e44297b2f16e82bb0e74e5f2a384ef0c5218bfea3d65
-
SSDEEP
12288:lTGYi0MDFPIAx2HTuBjBSe8LZ8PIIXfK1niI9QFPsIg95lvTHRyoYM:lDCSG6Z8LXf8iIiFsIgvpjRpYM
Score10/10-
Snake Keylogger payload
-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-