vipkeylogger | 046a8a4f07dbc89a6b091b5f58debf920a8ee3970e5cb21209176f0c49edabc4 | Triage

Sharing

General

Target

4008-90-0x0000000001220000-0x0000000001264000-memory.dmp
Size

272KB
Sample

250217-qytxlazrw3
MD5

99478443148c6cdbe033416acf3716e4
SHA1

51fbc94146f1887040448c2c89b483dfc5142d62
SHA256

046a8a4f07dbc89a6b091b5f58debf920a8ee3970e5cb21209176f0c49edabc4
SHA512

a88373e6a6df39281904b11ea52ab777a70f7a648e4b196f55568e2052ec5fc65f4bbb4918cef5222ae187e6cb972846e5fb88e18c7366e30544f22187d6045c
SSDEEP

3072:NgKLhdVTDrDD9aw0q6PrxBbP+KdkZa1WnOZbvFVgLjsjDluY/VgfmbbY:h/Y/1pZbAGlnb

Score

10^/10

vipkeylogger keylogger stealer

Malware Config

Extracted

Family

vipkeylogger

Credentials

Protocol: smtp
Host:
mail.novacitacor.pt
Port:
587
Username:
[email protected]
Password:
#Novasystem123#
Email To:
[email protected]

C2

https://api.telegram.org/bot8065011306:AAGGqcKWP-Xh6cM1C2XjGGRyWEn_Dwu0gBc/sendMessage?chat_id=6096718960

Targets

- Target
  
  4008-90-0x0000000001220000-0x0000000001264000-memory.dmp
- Size
  
  272KB
- MD5
  
  99478443148c6cdbe033416acf3716e4
- SHA1
  
  51fbc94146f1887040448c2c89b483dfc5142d62
- SHA256
  
  046a8a4f07dbc89a6b091b5f58debf920a8ee3970e5cb21209176f0c49edabc4
- SHA512
  
  a88373e6a6df39281904b11ea52ab777a70f7a648e4b196f55568e2052ec5fc65f4bbb4918cef5222ae187e6cb972846e5fb88e18c7366e30544f22187d6045c
- SSDEEP
  
  3072:NgKLhdVTDrDD9aw0q6PrxBbP+KdkZa1WnOZbvFVgLjsjDluY/VgfmbbY:h/Y/1pZbAGlnb
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

keyloggerstealervipkeylogger

behavioral1

behavioral2