General
-
Target
2620-17-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
507a2124457d33e1824f70e765c3f308
-
SHA1
bac1c5c6e22c8acdb2a245ed6e74502194914a63
-
SHA256
ff5de4cdbc3c1e4e9a65bdd9079a8d5ce25f1f1687fb86271d1c1c29dc8394c1
-
SHA512
644115f35b45beb9be45552bcf9d0286bd6a1de34e812979d366f3ec7928da6d1e243a4f6624c324c17bf2dab383d732895b007c446bf98a0dd3ded91b2da2e1
-
SSDEEP
3072:Wa9q2DEVYUEcciPL1sfJd2URObliCInosQlwvxLo7L5gbY:a2DEaUEJivbW67Lyb
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.agmfilter.com - Port:
587 - Username:
[email protected] - Password:
sibelr_63017 - Email To:
[email protected]
C2
https://scratchdreams.tk
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2620-17-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections