Extracted

• • Target

    encrypted.exe

  • Size

    2.8MB

  • MD5

    f01725be4af17d500bf5121780b3d304

  • SHA1

    4ba42ced4db6a5173ece265424b26b32ececbbd6

  • SHA256

    a6d95538d1d2f4031e10ff3a1258400a3f471fe64e14ff2dc9808c28334d0cea

  • SHA512

    68d39578c162f03c64617b82d8c242afb8278fa31476e116a29c83138fc804d75aefffe7e956ba8ffe6d5b2253f83d704212a166df1dc57e58b502fcdfdbed26

  • SSDEEP

    24576:Hp+4uTV+nMmbk1UU/ERo0trw2rIxNFsT8SYnt23pDoFL5I1MnU0jaShPkmZLirW7:HpCTVtsRo0NwggzLjUaPIWzea

  Score

  10^/10

  vipkeyloggercollectiondiscoverykeyloggerspywarestealer

  • VIPKeylogger

    VIPKeylogger is a keylogger and infostealer written in C# and it resembles SnakeKeylogger that was found in 2020.

    stealerkeyloggervipkeylogger

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2