ioc[.]one - OSINT Cyber Threat Intelligence Database

THREAT ANALYSIS REPORT: Snake Infostealer Malware

Tags

Show in Graph

Common Information

Type	Value
UUID	e779b581-86b3-4bfe-9fd5-d4163e0a4409
Fingerprint	8c070998ad63b6d8
Analysis status	DONE
Considered CTI value	0
Text language
Published	Oct. 28, 2021, midnight
Added to db	Sept. 26, 2022, 9:34 a.m.
Last updated	Nov. 18, 2024, 7:16 p.m.
Headline	THREAT ANALYSIS REPORT: Snake Infostealer Malware
Title	THREAT ANALYSIS REPORT: Snake Infostealer Malware
Detected Hints/Tags/Attributes	0/0/27

Source URLs

	Redirection	Url
Details	Source	https://www.cybereason.com/blog/threat-analysis-report-snake-infostealer-malware

URL Provider

Details	Provider	Source level domain
Details	cybereason.com	www.cybereason.com

Attributes

Details	Type	#Events	Value
Details	Domain	47	checkip.dyndns.org
Details	Domain	11	freegeoip.app
Details	Domain	106	domain.com
Details	Domain	145	api.telegram.org
Details	Email	1	test@domain.com
Details	File	1	septemberorderlist.pdf
Details	File	1	c:\users\user\appdata\roaming\vxhnivyvbhak.exe
Details	File	1	c:\users\user\appdata\local\temp\tmp55ab.tmp
Details	File	60	c:\windows\system32\schtasks.exe
Details	File	1260	explorer.exe
Details	File	4	wlanext.exe
Details	File	1212	powershell.exe
Details	File	11	avira.sys
Details	File	15	screenshot.png
Details	File	25	accounts.xml
Details	File	1	%appdata%\filezilla\filezilla\recentservers.xml
Details	File	1	%appdata%\postboxapp\profiles\logins.json
Details	File	1	%appdata%\thunderbird\profiles\logins.json
Details	File	1	%appdata%\8pecxstudios\cyberfox\profiles\logins.json
Details	File	1	%appdata%\mozilla\firefox\profiles\logins.json
Details	File	1	%appdata%\mozilla\icecat\profiles\logins.json
Details	File	1	%appdata%\comodo\icedragon\profiles\logins.json
Details	File	1	%appdata%\opera\opera\profile\wand.dat
Details	File	1	%appdata%\moonchild productions\pale moon\profiles\logins.json
Details	File	1	%appdata%\mozilla\seymonkey\profiles\logins.json
Details	File	1	%appdata%\flashpeak\slimbrowser\profiles\logins.json
Details	File	1	%appdata%\waterfox\profiles\logins.json