General
-
Target
Price List 3428865.exe
-
Size
587KB
-
Sample
231205-gxmbpahg75
-
MD5
41cbfe9a9cbbbbf6f986bfb6e360e119
-
SHA1
a7715d74a5bc11dd4f75d96e206ec7f38b43fb76
-
SHA256
c3c328f277cdb667eda6592126db6e7290f46ae37fc5f84d836e42e325612ab3
-
SHA512
88aff934e95f7f178c0275370ea5d96b33ae6fc6041ed428c7c10d247f36f28afe7cddff4cb5dba0d910542cec9e5bd39ee1eca1edccf1d59c0d5e74b77ade04
-
SSDEEP
12288:3l5nF80Vdqrlbrr48/HfOPYVTJJkXa0Me6r7jBLdMiVxr:3lVqhbrrXHfsQkK0t8pLdMibr
Static task
static1
Behavioral task
behavioral1
Sample
Price List 3428865.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
Price List 3428865.exe
Resource
win10v2004-20231130-en
Malware Config
Targets
-
-
Target
Price List 3428865.exe
-
Size
587KB
-
MD5
41cbfe9a9cbbbbf6f986bfb6e360e119
-
SHA1
a7715d74a5bc11dd4f75d96e206ec7f38b43fb76
-
SHA256
c3c328f277cdb667eda6592126db6e7290f46ae37fc5f84d836e42e325612ab3
-
SHA512
88aff934e95f7f178c0275370ea5d96b33ae6fc6041ed428c7c10d247f36f28afe7cddff4cb5dba0d910542cec9e5bd39ee1eca1edccf1d59c0d5e74b77ade04
-
SSDEEP
12288:3l5nF80Vdqrlbrr48/HfOPYVTJJkXa0Me6r7jBLdMiVxr:3lVqhbrrXHfsQkK0t8pLdMibr
Score10/10-
Snake Keylogger payload
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-