Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

final invoice.exe

windows7-x64

10

final invoice.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    final invoice.exe

  • Size

    983KB

  • Sample

    250320-n2gekastbx

  • MD5

    6249cd12ccdda8ed2f251879c751c6c8

  • SHA1

    825dc5e7289f101a172ed4926ac80e766b6ec53f

  • SHA256

    a606e580983fdd746d8a8f9a4007ecc5b209565356ad3341b7d4cf0793cd4df8

  • SHA512

    43f4c439dcc29f55d43a6c15313d65eb4908d52a60ddd13d18a78eb96fb8ab8ce1f88d8b2b1ce765f069d7105f5f700bcc2682c2404f68db88f3cc51594a3b2e

  • SSDEEP

    24576:Ou6J33O0c+JY5UZ+XC0kGso6FanOtVayGHWY:Au0c++OCvkGs9FanOtVaCY

Score
10/10
snakekeyloggercollectiondiscoverykeyloggerstealer

Malware Config

Extracted

Family

snakekeylogger

C2

https://api.telegram.org/bot7622409620:AAGYObz0BTtGB6EjTnYqQW3bW6b_vAkdZK4/sendMessage?chat_id=7000018009

Targets

    • Target

      final invoice.exe

    • Size

      983KB

    • MD5

      6249cd12ccdda8ed2f251879c751c6c8

    • SHA1

      825dc5e7289f101a172ed4926ac80e766b6ec53f

    • SHA256

      a606e580983fdd746d8a8f9a4007ecc5b209565356ad3341b7d4cf0793cd4df8

    • SHA512

      43f4c439dcc29f55d43a6c15313d65eb4908d52a60ddd13d18a78eb96fb8ab8ce1f88d8b2b1ce765f069d7105f5f700bcc2682c2404f68db88f3cc51594a3b2e

    • SSDEEP

      24576:Ou6J33O0c+JY5UZ+XC0kGso6FanOtVayGHWY:Au0c++OCvkGs9FanOtVaCY

    Score
    10/10
    snakekeyloggercollectiondiscoverykeyloggerstealer

    • Snake Keylogger

      Keylogger and Infostealer first seen in November 2020.

      stealerkeyloggersnakekeylogger

    • Snake Keylogger payload

    • Snakekeylogger family

      snakekeylogger

    • Accesses Microsoft Outlook profiles

      collection

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.