Overview

overview

10

Static

static

10

e7d13ec9ec...20.exe

windows7-x64

10

e7d13ec9ec...20.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c55b05f72666b00a2153c92628979f2a.bin

  • Size

    45KB

  • MD5

    4f8a8da1ced654572d65eca298b45f6e

  • SHA1

    66b5b51aca67487604eb46c504482d2727d6c618

  • SHA256

    7279b9c2a8cd5c76ff1b1a1cd3d9d0a0abcbc554ecebaa6c713f087bcd755c56

  • SHA512

    fb1089e3844d4df3cce2810961a27ff50b495bf87866a7c34a4e1640fe95a4341b3dcadb36c68a09de87b3f7d1236bb35059cb3e8fd7a07f3b6579f2487292c1

  • SSDEEP

    768:st87d8+GYksiOJHv0Zm0b82g9LNBO+UpNyrNLwGhrFc9G7VhlNYm6s:b7d8cJJcZENBhUpNy5hF7bf

Score
10/10
snakekeylogger

Malware Config

Extracted

Family

snakekeylogger

C2

https://api.telegram.org/bot5945022662:AAH3tNDq2H4t2_2yAxq__TOQa3RMNliwRjM/sendMessage?chat_id=6147569474

Signatures

  • Snake Keylogger payload 1 IoCs
  • Snakekeylogger family
    snakekeylogger
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c55b05f72666b00a2153c92628979f2a.bin
    .zip

    Password: infected

  • e7d13ec9ec5f7941487d13791dae5640ebac867970f1b855d812798032f91720.exe
    .exe windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections