General
-
Target
2608-66-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
0e1db86f8687dce0c1e64cc86e084588
-
SHA1
480f6e0603e01ef4a9d2b2dd047657a77c18c24b
-
SHA256
fb6f6aab6c0a3b8417e7f883b14fe9d2434b589cb075c47319432165611a54fa
-
SHA512
0224376d3609b27cfacce712dfafb068c52e5dc79a8d5ed81059d27274f4ed6ac9ef4400b2e55bb5d97004316657d24f6a12096ef385675f61c1ea4fc1edf5ae
-
SSDEEP
1536:7phrMBRRXrZaD5wvYRefADiJ4FPYIY1kJQeBuP07A9/WcQb/zr5swoupiO5BIVj:FhryRFr8dCYReRJ4d89/FQb7o4fBIV
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.qbangra.com - Port:
587 - Username:
[email protected] - Password:
QBangra2020 - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2608-66-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections