Extracted

• • Target

    Fizetési másolatCT06292023.exe

  • Size

    630KB

  • MD5

    51fa78a1b3137cde2cad099e3825f321

  • SHA1

    c7bbbef38683de5eb911915524ead1eb6c8b3b90

  • SHA256

    3dedd91d5d734fdea8fa04714e99b1fdcac4c06626ad2e10aa825e71fc18c3c3

  • SHA512

    2c236bd2910a601b4e2cfb659c09e96eafa526a640b7e15705fafda227e89f49e6f8a6be477a5e1b63264651675fe11bc12226a3d7d11b8f7e5b5229a33e0eac

  • SSDEEP

    12288:M9Xnc5JdxDe91WvvwZin4A6RRFbrEr7GQvDN81:HxDKwjMRC/Lp81

  Score

  10^/10

  snakekeyloggercollectionkeyloggerspywarestealer

  • Snake Keylogger

    Keylogger and Infostealer first seen in November 2020.

    stealerkeyloggersnakekeylogger

  • Snake Keylogger payload

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2behavioral3