vipkeylogger | 7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e | Triage

Submit
Reports

Overview

overview

Static

static

3

7789d88b14...2e.exe

windows7-x64

7789d88b14...2e.exe

windows10-2004-x64

Sharing

General

Target

7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e.exe
Size

1.9MB
Sample

241024-b6fbvayeqh
MD5

cf2904fe594a57b07865e0a5c5564802
SHA1

832aa9b62e1d778942a4079c9d2637e0a0e802b1
SHA256

7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e
SHA512

93bba7bcc3caff180cf1d0f7c2cc99a08ebc31eaf63988273e42a542ae155537382b2a149f53c0fc360ce3f87d31b7980f7b3edd1266683de560623a11869217
SSDEEP

12288:VYKE392PohWoHazJTNVpGNWw+TUiGV3z+YgSj:KK+2kETjkJ4Opz+YgSj

Score

10^/10

vipkeylogger collection discovery keylogger stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e.exe

Resource

win7-20240903-en

vipkeylogger collection discovery keylogger stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e.exe

Resource

win10v2004-20241007-en

vipkeylogger collection discovery keylogger stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

vipkeylogger

C2

https://api.telegram.org/bot7872855149:AAEZ5N2AflriII8w90vDMIlh-npPaeOdWpk/sendMessage?chat_id=5259132764

Targets

- Target
  
  7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e.exe
- Size
  
  1.9MB
- MD5
  
  cf2904fe594a57b07865e0a5c5564802
- SHA1
  
  832aa9b62e1d778942a4079c9d2637e0a0e802b1
- SHA256
  
  7789d88b143324fb53a504a5f340d18d202b1ef21eb004badbdd7ffba4f0fa2e
- SHA512
  
  93bba7bcc3caff180cf1d0f7c2cc99a08ebc31eaf63988273e42a542ae155537382b2a149f53c0fc360ce3f87d31b7980f7b3edd1266683de560623a11869217
- SSDEEP
  
  12288:VYKE392PohWoHazJTNVpGNWw+TUiGV3z+YgSj:KK+2kETjkJ4Opz+YgSj
Score

10^/10

vipkeylogger collection discovery keylogger stealer
- VIPKeylogger
  VIPKeylogger is a keylogger and infostealer written in C# and it resembles SnakeKeylogger that was found in 2020.
  stealer keylogger vipkeylogger
- Accesses Microsoft Outlook profiles
  collection
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vipkeyloggercollectiondiscoverykeyloggerstealer

behavioral2

vipkeyloggercollectiondiscoverykeyloggerstealer

© 2018-2025

Terms | Privacy