General
-
Target
1656-77-0x0000000140000000-0x0000000140024000-memory.dmp
-
Size
144KB
-
MD5
108b7c9cea140899d5e6143788d37071
-
SHA1
49a42c42d0100f8169bdcd3f6a710c93638855e0
-
SHA256
0f4036ffa1bb7ddf32d9e27369489f2f62aaafda442f390d68bb09117e6cd0bc
-
SHA512
7486a1bc01dacc000ec04e2a2aa94fe25ff06af0d32deb24bcc64b199eb0c5140d2c20be40c8d1ef8d4b572cbff05ba84de5d27ed7544319d95812c0a29e534b
-
SSDEEP
1536:aOOYzPuJbmipA1Lq9ta+vBUFrlYYZVkG8g/MCXY8ZkMFbqM7Kd6b/cCRfw/0piOg:aOOYz2xh+Lq9UZV3P786bUCRsewBjR
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
C2
https://api.telegram.org/bot5977580508:AAGxsXXr4l_28IulMI7_DqlOqonoyxkS1Ts/sendMessage?chat_id=5582419717
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1656-77-0x0000000140000000-0x0000000140024000-memory.dmp
Headers
Sections