General
-
Target
04450199.exe
-
Size
126KB
-
MD5
7cd9a2079805e748cd83ecd2ff140fa6
-
SHA1
6d83b9e546a15d0555bf679e355fa3c74c2acc1b
-
SHA256
7b0c02cb66adf1c524768386d28ab90d71ae19ebf80d4be969935be762d0bb22
-
SHA512
6148f165a8c7ecb41d21a21728e1c79687e5e573823d31485aa9b1cbf87bd873c645294ff003569121b5cbc4a64c3e4d9f779f19728d0df9b674358e1f77cb82
-
SSDEEP
1536:ISDrcZc2gUhBw+Q3690+vBUFrlYYwRkRUDFnpBHa2QMFZy7lwDTLyb/cZzjkpiOq:ISDrcW1C036iwRKwDnybUBOwBIbhDbY
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
posta.ni.net.tr - Port:
587 - Username:
[email protected] - Password:
nilya1957 - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
04450199.exe
Headers
Sections