General
-
Target
SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe
-
Size
855KB
-
Sample
221129-llgdhsfh87
-
MD5
839f5f04adc3be822ec12a9e32f084e6
-
SHA1
280596d5e5154ac10b85d656279f40fd76d6216e
-
SHA256
daf5d9181ae4291602cc0c77ed712ea3249ef3a8d461a0f14d1ea28960dfdc19
-
SHA512
d03d7907c7b455ace45f64a634a18aa12473f142e0ba50877d0fe768fb00f9707e64bca39dc59853813a4d50a51f5e93db4b302d3b6b70d2a84c150550e33721
-
SSDEEP
24576:HOPDdEPfp3267whzIk5g/Z9eeAltM5wwu:HrPxF7KIke/jNyw
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Win32.CrypterX-gen.2848.13330.exe
-
Size
855KB
-
MD5
839f5f04adc3be822ec12a9e32f084e6
-
SHA1
280596d5e5154ac10b85d656279f40fd76d6216e
-
SHA256
daf5d9181ae4291602cc0c77ed712ea3249ef3a8d461a0f14d1ea28960dfdc19
-
SHA512
d03d7907c7b455ace45f64a634a18aa12473f142e0ba50877d0fe768fb00f9707e64bca39dc59853813a4d50a51f5e93db4b302d3b6b70d2a84c150550e33721
-
SSDEEP
24576:HOPDdEPfp3267whzIk5g/Z9eeAltM5wwu:HrPxF7KIke/jNyw
Score10/10-
Snake Keylogger payload
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-