General
-
Target
2628-23-0x0000000000400000-0x0000000000426000-memory.dmp
-
Size
152KB
-
MD5
a72d843298e9623595f1b6c0d338a63e
-
SHA1
e1b0168a2f1ee423582f8f1928add759a1d7997f
-
SHA256
0763855c6209d4093a3d4003fbfc8e9840b57ce744c37ec2946b0f04d69d6d3d
-
SHA512
1a6a45aeee9b86b1d71f2bece30f463e0c8ecac93e2e20c702765da781d90fc2b56aa44d7d27c8efce3d32d751b47dc0773521ecffbd06a35266a2a99bfb899c
-
SSDEEP
3072:h4VbJZgHxdC23XivxLkGvknsROGVnNbl4UsQpwvxLo7L:wgHxs23yvc1GlNbOi7L
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.ustunambalaj.com.tr - Port:
587 - Username:
[email protected] - Password:
!ttPkj773Ebc - Email To:
[email protected]
C2
https://scratchdreams.tk
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2628-23-0x0000000000400000-0x0000000000426000-memory.dmp
Headers
Sections