General
-
Target
2508-17-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
6810455d3da2682002db240826e55df8
-
SHA1
458e444cb626e26d2ec641c5d723890f26c836e5
-
SHA256
7d921a9cd6bbba3b25073354f4dae97ec18c7204bc265c00b07901f93cdbf759
-
SHA512
c2aa79104afd4a623c6801f4247bd5410b5d165279df4f3811e63964df123c724f428321b06e8291b0a409e2a3a45693b2e482acd121ceb3240ae4edba6afba5
-
SSDEEP
3072:GmTDx50p8GD5TIXWfr9cPyt4JnblFesXUwv8Lo7L5gbY:hx50pTD5T2g4Jnbf37Lyb
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.ettehadco.com - Port:
587 - Username:
[email protected] - Password:
1S47f$kWB@2jAt&*R8NA - Email To:
[email protected]
C2
https://scratchdreams.tk
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2508-17-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections