General
-
Target
268-64-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
2ce3d4fba7d4d57f27a8e656a1e514b2
-
SHA1
68588243634f9ff835601f401c19007d6260377d
-
SHA256
d5bbd15ecf1486b30c1561a63623f15e166f6c3947ac2411b91cee17875923fe
-
SHA512
e0091c49a852b7669cb0ac0a22de91c9010397ed6f104a1dfaf00a38d4fb9d92cb87538f58065d8b7b8f61b5e6953f1c4018209b43f2fc727aee8e141cea03fd
-
SSDEEP
3072:aY5pbEci0NX4Piy8J+bf0qpMxGfBqXFbY:aBF7++bBpA1b
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
smtp.plagastur.com - Port:
587 - Username:
[email protected] - Password:
Plagas2023 - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
StormKitty payload 1 IoCs
-
Stormkitty family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
268-64-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections