vipkeylogger | 8a5e92b80e14d85eebe0b1267352b0dd485e1245f8ce69827e87d0620e51bfcc | Triage

Sharing

General

Target

744-78-0x0000000001200000-0x0000000001242000-memory.dmp
Size

264KB
Sample

241026-pe1qcs1rcm
MD5

9d3b67f5c3a9f27112512571800114e2
SHA1

32a612fd25fb6275e97ce89312df4a74d35ae5f6
SHA256

8a5e92b80e14d85eebe0b1267352b0dd485e1245f8ce69827e87d0620e51bfcc
SHA512

663f79fe7c63c3cb596f6c2877aaf8ec08b9927a2f9e3cbf53cae72d31dd65f1a04bd1ea66f4e009fe83ca06c214d439fb7a141641a9b4371bb14b876c472cba
SSDEEP

3072:UPjGFyW7S8I8QRwIwG7XrJhgtItJQK7KdpgbyrC2i5LsH7+YTVgSKobbY:myIRopgbQHb

Score

10^/10

vipkeylogger keylogger stealer

Malware Config

Extracted

Family

vipkeylogger

Credentials

Protocol: smtp
Host:
mail.turktav.com
Port:
587
Username:
[email protected]
Password:
)d!s~MV@X;!M
Email To:
[email protected]

C2

https://api.telegram.org/bot7422104780:AAE8Q_pLcHk4fu5XIMEQar6JqYuE_1O_qCg/sendMessage?chat_id=7451270736

Targets

- Target
  
  744-78-0x0000000001200000-0x0000000001242000-memory.dmp
- Size
  
  264KB
- MD5
  
  9d3b67f5c3a9f27112512571800114e2
- SHA1
  
  32a612fd25fb6275e97ce89312df4a74d35ae5f6
- SHA256
  
  8a5e92b80e14d85eebe0b1267352b0dd485e1245f8ce69827e87d0620e51bfcc
- SHA512
  
  663f79fe7c63c3cb596f6c2877aaf8ec08b9927a2f9e3cbf53cae72d31dd65f1a04bd1ea66f4e009fe83ca06c214d439fb7a141641a9b4371bb14b876c472cba
- SSDEEP
  
  3072:UPjGFyW7S8I8QRwIwG7XrJhgtItJQK7KdpgbyrC2i5LsH7+YTVgSKobbY:myIRopgbQHb
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

keyloggerstealervipkeylogger

behavioral1

behavioral2