snakekeylogger | c3c328f277cdb667eda6592126db6e7290f46ae37fc5f84d836e42e325612ab3 | Triage

Submit
Reports

Overview

overview

Static

static

3

PriceList3428865.exe

windows7-x64

PriceList3428865.exe

windows10-2004-x64

Sharing

General

Target

PriceList3428865.exe
Size

587KB
Sample

231205-t9sepada28
MD5

41cbfe9a9cbbbbf6f986bfb6e360e119
SHA1

a7715d74a5bc11dd4f75d96e206ec7f38b43fb76
SHA256

c3c328f277cdb667eda6592126db6e7290f46ae37fc5f84d836e42e325612ab3
SHA512

88aff934e95f7f178c0275370ea5d96b33ae6fc6041ed428c7c10d247f36f28afe7cddff4cb5dba0d910542cec9e5bd39ee1eca1edccf1d59c0d5e74b77ade04
SSDEEP

12288:3l5nF80Vdqrlbrr48/HfOPYVTJJkXa0Me6r7jBLdMiVxr:3lVqhbrrXHfsQkK0t8pLdMibr

Score

10^/10

snakekeylogger collection keylogger stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PriceList3428865.exe

Resource

win7-20231129-en

snakekeylogger keylogger stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

PriceList3428865.exe

Resource

win10v2004-20231127-en

snakekeylogger collection keylogger stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  PriceList3428865.exe
- Size
  
  587KB
- MD5
  
  41cbfe9a9cbbbbf6f986bfb6e360e119
- SHA1
  
  a7715d74a5bc11dd4f75d96e206ec7f38b43fb76
- SHA256
  
  c3c328f277cdb667eda6592126db6e7290f46ae37fc5f84d836e42e325612ab3
- SHA512
  
  88aff934e95f7f178c0275370ea5d96b33ae6fc6041ed428c7c10d247f36f28afe7cddff4cb5dba0d910542cec9e5bd39ee1eca1edccf1d59c0d5e74b77ade04
- SSDEEP
  
  12288:3l5nF80Vdqrlbrr48/HfOPYVTJJkXa0Me6r7jBLdMiVxr:3lVqhbrrXHfsQkK0t8pLdMibr
Score

10^/10

snakekeylogger keylogger stealer collection
- Snake Keylogger
  Keylogger and Infostealer first seen in November 2020.
  stealer keylogger snakekeylogger
- Snake Keylogger payload
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

snakekeyloggerkeyloggerstealer

behavioral2

snakekeyloggercollectionkeyloggerstealer

© 2018-2024

Terms | Privacy