General
-
Target
2688-9-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
ff87a008162291130ff29f8c1ab27385
-
SHA1
17204542026838f4362b6ad4aeaf124085cfb382
-
SHA256
044a47f568d7a983d6a7aaf1fd03ff5119ab2a6e215e2a5f4923040bafd40e1a
-
SHA512
6f0037e5cf8bd10942107f78f62ea746241231e4a99a2319ece0557c968262294f95a718e12228b685d9fa682d4a74d074311f4c75e931ddd1817894711a9873
-
SSDEEP
3072:VNdkGIVtuc2PJFUej60EoK4LblmusXXwv8L8s3:KGIVkc2UnnwbHs3
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
valleycountysar.org - Port:
26 - Username:
[email protected] - Password:
iU0Ta!$K8L51 - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2688-9-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections