General
-
Target
1196-63-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
ff096d3dad449413794f130ae00b5137
-
SHA1
50a7bc98b2ae8d1a9ca28bcc1f04ef309f84cf37
-
SHA256
2d2b4cb81221bef4a43619e96a54b65429e8ffbcfcbb792964f9938459b7a66a
-
SHA512
86b28351d3fdbb2a3af40f1a8bbd0e595b04c0f1d1276a922ec52e6a585b59d085ff7ebe6b5137c6140a5512492711c6ed8f1d054c6a02361f5d11ecaa36b1ad
-
SSDEEP
1536:UFlAi3bCo1sI4SSGP0NZu0eLTxJfvyNn4YOBb/U0T9aljpiOWBl:UFlAi/s+PkZu0eLTy4YQb8y9aXwBl
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
C2
https://api.telegram.org/bot1513074805:AAE9QtTNfInovOlDzP4PcE-Ro12KxYiz9Z4/sendMessage?chat_id=1673719962
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1196-63-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections