snakebot | c9ae7f8a79a27955d93c32f1b9fc3100496f4cdb6acfa848e80acabca6d1749f | Triage

Submit
Reports

Overview

overview

Static

static

1

Setup.exe

windows7-x64

Resubmissions

13-03-2023 06:29

230313-g841waah6v 10

13-03-2023 05:52

230313-gk2wlsgg73 10

13-03-2023 05:45

230313-gfsr5sgg57 7

Sharing

General

Target

Setup.exe
Size

120.1MB
Sample

230313-gk2wlsgg73
MD5

5fb9b3c109ad471d0bc148329344e8ca
SHA1

21f2a06e7f83cb2886c16cafc20968f370fa2643
SHA256

c9ae7f8a79a27955d93c32f1b9fc3100496f4cdb6acfa848e80acabca6d1749f
SHA512

b50c9420e0709391be280b4f65be35bde9018388872c4ad675f104fd0093be22159a74b0d46b0d1c92043887824cb97464db452d422bcd339a1f3578b3f7456c
SSDEEP

1572864:uiM7DhczCaxWLABs8spKCFLme+A2akcvAYBkbKiD5DEeM9VCwQdUzk+:ulOCaELAO8WLiA2aTVkbKidc9IdUz/

Score

10^/10

snakebot discovery snakebot

Static task

static1

Behavioral task

behavioral1

Sample

Setup.exe

Resource

win7-20230220-es

snakebot discovery snakebot

windows7-x64

12 signatures

600 seconds

Malware Config

Targets

- Target
  
  Setup.exe
- Size
  
  120.1MB
- MD5
  
  5fb9b3c109ad471d0bc148329344e8ca
- SHA1
  
  21f2a06e7f83cb2886c16cafc20968f370fa2643
- SHA256
  
  c9ae7f8a79a27955d93c32f1b9fc3100496f4cdb6acfa848e80acabca6d1749f
- SHA512
  
  b50c9420e0709391be280b4f65be35bde9018388872c4ad675f104fd0093be22159a74b0d46b0d1c92043887824cb97464db452d422bcd339a1f3578b3f7456c
- SSDEEP
  
  1572864:uiM7DhczCaxWLABs8spKCFLme+A2akcvAYBkbKiD5DEeM9VCwQdUzk+:ulOCaELAO8WLiA2aTVkbKidc9IdUz/
Score

10^/10

snakebot discovery snakebot
- SnakeBOT
  SnakeBOT is a heavily obfuscated .NET downloader.
  snakebot
- Contains SnakeBOT related strings
  snakebot
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

snakebotdiscoverysnakebot

© 2018-2024

Terms | Privacy