Overview

overview

10

Static

static

SecuriteIn...30.exe

windows7-x64

1

SecuriteIn...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe

  • Size

    855KB

  • Sample

    221129-llgdhsfh87

  • MD5

    839f5f04adc3be822ec12a9e32f084e6

  • SHA1

    280596d5e5154ac10b85d656279f40fd76d6216e

  • SHA256

    daf5d9181ae4291602cc0c77ed712ea3249ef3a8d461a0f14d1ea28960dfdc19

  • SHA512

    d03d7907c7b455ace45f64a634a18aa12473f142e0ba50877d0fe768fb00f9707e64bca39dc59853813a4d50a51f5e93db4b302d3b6b70d2a84c150550e33721

  • SSDEEP

    24576:HOPDdEPfp3267whzIk5g/Z9eeAltM5wwu:HrPxF7KIke/jNyw

Score
10/10
snakekeyloggerkeyloggerstealer

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe

    • Size

      855KB

    • MD5

      839f5f04adc3be822ec12a9e32f084e6

    • SHA1

      280596d5e5154ac10b85d656279f40fd76d6216e

    • SHA256

      daf5d9181ae4291602cc0c77ed712ea3249ef3a8d461a0f14d1ea28960dfdc19

    • SHA512

      d03d7907c7b455ace45f64a634a18aa12473f142e0ba50877d0fe768fb00f9707e64bca39dc59853813a4d50a51f5e93db4b302d3b6b70d2a84c150550e33721

    • SSDEEP

      24576:HOPDdEPfp3267whzIk5g/Z9eeAltM5wwu:HrPxF7KIke/jNyw

    Score
    10/10
    snakekeyloggerkeyloggerstealer

    • Snake Keylogger

      Keylogger and Infostealer first seen in November 2020.

      stealerkeyloggersnakekeylogger

    • Snake Keylogger payload

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks