Score: | 100 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
404 Keylogger, Snake Keylogger | Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victims sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram. | No Attribution |
|
AV Detection |
---|
Source: |
Avira URL Cloud: |
||
Source: |
Avira URL Cloud: |
Source: |
Malware Configuration Extractor: |
Source: |
Virustotal: |
Perma Link | ||
Source: |
Virustotal: |
Perma Link |
Source: |
Virustotal: |
Perma Link | ||
Source: |
ReversingLabs: |
Source: |
Joe Sandbox ML: |
Source: |
Static PE information: |
Source: |
HTTPS traffic detected: |
Source: |
HTTPS traffic detected: |
Source: |
Static PE information: |
Source: |
Binary string: |
Source: |
Code function: |
1_2_01437550 | |
Source: |
Code function: |
1_2_0143793B | |
Source: |
Code function: |
1_2_01437939 | |
Source: |
Code function: |
1_2_0300FA10 | |
Source: |
Code function: |
1_2_0300EDF0 | |
Source: |
Code function: |
1_2_0300EDF0 | |
Source: |
Code function: |
1_2_0300E310 | |
Source: |
Code function: |
1_2_0300EB23 | |
Source: |
Code function: |
1_2_0300E943 | |
Source: |
Code function: |
1_2_06D46F28 | |
Source: |
Code function: |
1_2_06D48960 | |
Source: |
Code function: |
1_2_06D436CE | |
Source: |
Code function: |
1_2_06D46678 | |
Source: |
Code function: |
1_2_06D40498 | |
Source: |
Code function: |
1_2_06D47C58 | |
Source: |
Code function: |
1_2_06D45DC8 | |
Source: |
Code function: |
1_2_06D40D48 | |
Source: |
Code function: |
1_2_06D48508 | |
Source: |
Code function: |
1_2_06D46AD0 | |
Source: |
Code function: |
1_2_06D46220 | |
Source: |
Code function: |
1_2_06D433B8 | |
Source: |
Code function: |
1_2_06D473A8 | |
Source: |
Code function: |
1_2_06D433A8 | |
Source: |
Code function: |
1_2_06D408F0 | |
Source: |
Code function: |
1_2_06D480B0 | |
Source: |
Code function: |
1_2_06D40040 | |
Source: |
Code function: |
1_2_06D47800 | |
Source: |
Code function: |
1_2_06D45198 | |
Source: |
Code function: |
1_2_06D45970 |
Networking |
---|
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
||
Source: |
Snort IDS: |
Source: |
File source: |
||
Source: |
File source: |
||
Source: |
File source: |
Source: |
TCP traffic: |
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
Source: |
IP Address: |
||
Source: |
IP Address: |
||
Source: |
IP Address: |
Source: |
ASN Name: |
Source: |
JA3 fingerprint: |
||
Source: |
JA3 fingerprint: |
Source: |
DNS query: |
||
Source: |
DNS query: |
Source: |
TCP traffic: |
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
Source: |
HTTPS traffic detected: |
Source: |
UDP traffic detected without corresponding DNS query: |
||
Source: |
UDP traffic detected without corresponding DNS query: |
||
Source: |
UDP traffic detected without corresponding DNS query: |
||
Source: |
UDP traffic detected without corresponding DNS query: |
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
||
Source: |
HTTP traffic detected: |
Source: |
DNS traffic detected: |
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |
String found in binary or memory: |
||
Source: |