General
-
Target
e3d6bf1ce9fea9bd1248afa6e927a1d763a3e0e899be2f0c0c77d12de4870654.exe.bin
-
Size
126KB
-
MD5
2ace3fe2cb033a797bfd6749dfba2c2b
-
SHA1
e2ba08dbdba347cee4f3a14b6531032d6c35c9f6
-
SHA256
e3d6bf1ce9fea9bd1248afa6e927a1d763a3e0e899be2f0c0c77d12de4870654
-
SHA512
bd8da5b5c77e7a00d3c384dc7fcb91886ce5d4f3edcdc9abd78b8f329eca68e27b2fe27331c1e35b754e817c9fe912e707edbe94095730f65066cbb20d146111
-
SSDEEP
1536:wtMpEvqHEIsanj0ly+G0/nE+vBUFrlY9DZKkAMFFxgfPpAbKuNJtbfpyJI0piOW0:wtMKH7/tDZv2abfmJIewBnFbY
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
C2
https://api.telegram.org/bot6221660400:AAGb-WADrhdDFxd9kxzjtg3jdDw9-uvNVlM/sendMessage?chat_id=6200392710
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
StormKitty payload 1 IoCs
-
Stormkitty family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
e3d6bf1ce9fea9bd1248afa6e927a1d763a3e0e899be2f0c0c77d12de4870654.exe.bin
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections