General
-
Target
MT Marine Tiger Particulars.exe
-
Size
708KB
-
Sample
231221-rpl13aafdk
-
MD5
2a6bbd32779fe304a44a73568897f49d
-
SHA1
f77f48709630c9c04cc12de8b286f21ecd05b7d4
-
SHA256
2a2ddd46e762a33bd47b94a93f06a0a8560b868e8a37e5f1b9d6515ead3e974b
-
SHA512
568e9b8e2fffbc705f702110cfe74bfdeebde8bc99059abab34b860a5d6bfd6a97cb6029a51b4dcf66091e09863b1eb4207555393d3922847b8466c3f5086c0d
-
SSDEEP
12288:W8pYTbiR6P4mpQO9odLg8EJk0xcNuoOO+1/1CtXu02WB2fBNDark:9pY06P4qpzTCtXdJB2fBNOr
Static task
static1
Behavioral task
behavioral1
Sample
MT Marine Tiger Particulars.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
MT Marine Tiger Particulars.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
MT Marine Tiger Particulars.exe
-
Size
708KB
-
MD5
2a6bbd32779fe304a44a73568897f49d
-
SHA1
f77f48709630c9c04cc12de8b286f21ecd05b7d4
-
SHA256
2a2ddd46e762a33bd47b94a93f06a0a8560b868e8a37e5f1b9d6515ead3e974b
-
SHA512
568e9b8e2fffbc705f702110cfe74bfdeebde8bc99059abab34b860a5d6bfd6a97cb6029a51b4dcf66091e09863b1eb4207555393d3922847b8466c3f5086c0d
-
SSDEEP
12288:W8pYTbiR6P4mpQO9odLg8EJk0xcNuoOO+1/1CtXu02WB2fBNDark:9pY06P4qpzTCtXdJB2fBNOr
Score10/10-
Snake Keylogger payload
-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-