General
-
Target
fa06efa7ae0bfe45997fe30f5cf4a62be3d804ea3347777ed84a0dc87bb2f2e2
-
Size
655KB
-
Sample
221129-g12wjsga4w
-
MD5
53c9c38d1ac853987477c01531914297
-
SHA1
69856cc4072183bc57e89566f12f5e861e8cf107
-
SHA256
fa06efa7ae0bfe45997fe30f5cf4a62be3d804ea3347777ed84a0dc87bb2f2e2
-
SHA512
312c00695fa9e25ba24d3d1c78d10ca193165a8ce49861d4a7102ba7a6bba6e7e70a0b770bb902edabcb3b6b1000a69fda715aff82c98213799218844ed60e3c
-
SSDEEP
12288:rOvCM7xRNsXD6iYiXNGJd0llr3AA3rAHMd/OGOeHU8d5SmRTL538Hnpe:sCM7xzWNGWwA37WCUQrRTL5MHnpe
Static task
static1
Behavioral task
behavioral1
Sample
fa06efa7ae0bfe45997fe30f5cf4a62be3d804ea3347777ed84a0dc87bb2f2e2.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
fa06efa7ae0bfe45997fe30f5cf4a62be3d804ea3347777ed84a0dc87bb2f2e2
-
Size
655KB
-
MD5
53c9c38d1ac853987477c01531914297
-
SHA1
69856cc4072183bc57e89566f12f5e861e8cf107
-
SHA256
fa06efa7ae0bfe45997fe30f5cf4a62be3d804ea3347777ed84a0dc87bb2f2e2
-
SHA512
312c00695fa9e25ba24d3d1c78d10ca193165a8ce49861d4a7102ba7a6bba6e7e70a0b770bb902edabcb3b6b1000a69fda715aff82c98213799218844ed60e3c
-
SSDEEP
12288:rOvCM7xRNsXD6iYiXNGJd0llr3AA3rAHMd/OGOeHU8d5SmRTL538Hnpe:sCM7xzWNGWwA37WCUQrRTL5MHnpe
Score10/10-
Snake Keylogger payload
-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-