General
-
Target
4e504e5cd7c31299740b00ea1d3a9864d990efc00210d0f0c0b5ad28c4306d81_payload.exe
-
Size
130KB
-
MD5
98bcad6a81eba46addd3ce603e1fbd34
-
SHA1
8a77fcc4eccb54e3e9cfbf235deaa0683dba4f28
-
SHA256
76721eceb65f67dff858add924fe10be2885200023c859bd3d3dddd53bd471b7
-
SHA512
f1ea905a9b473a12d22597cc215ef524342affbae53c80443d97d850a4cb85dd651b954a03ec9bd41ba59b1d3694016319ee859462c51b5ab8a340c72529649d
-
SSDEEP
3072:XThNRzxsrjccmNBe4IFu4JY3v1+gnldb5Vl0bsYrwv8dqgbY:7R5pFldbVizb
Score
10/10
Malware Config
Extracted
Family
snakekeylogger
Credentials
Protocol: smtp- Host:
mail.venoragroup.com - Port:
587 - Username:
[email protected] - Password:
aIdYGwb;4D]x - Email To:
[email protected]
Signatures
-
Snake Keylogger payload 1 IoCs
-
Snakekeylogger family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4e504e5cd7c31299740b00ea1d3a9864d990efc00210d0f0c0b5ad28c4306d81_payload.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections