General
-
Target
2132-8-0x0000000000550000-0x0000000000574000-memory.dmp
-
Size
144KB
-
MD5
7a8a9ba02919ae6aee6d08b4e978f2c8
-
SHA1
61e367b5f0a6570ef9e7c9acb134d834a5557609
-
SHA256
4a516ab453aaad10b614cee2103c87591bd8cc74c8685a736f59111fe31579cc
-
SHA512
9f7114342a22fc69448f43c0a9fe6a5fabafff7d3304a97394f74d05ca63a79da785429c52fbfd17791f1d597e2a67b236ad14a45a563fe9df8486632241a423
-
SSDEEP
1536:JfxjbbGvhhbKCGM3bwa+vBUFMlY6vE9xTUl/1kvzMFWuhDiAWb/zYZtGbtJIapiF:lxjbKqPM3bivEIWb73eMwBgxGgbY
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.nura.com.my - Port:
587 - Username:
[email protected] - Password:
jWAH^6m - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2132-8-0x0000000000550000-0x0000000000574000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections