MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


SnakeKeylogger


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f
SHA3-384 hash: 71da19b9bc07aa0a636b40d5a99ce478675883605ca800a291c2c84f6f9b3ffac447d5322baf31277e7c8716d020bae2
SHA1 hash: dbaa94572db309165fc3e88ef0fcea53c496e49e
MD5 hash: 476922f030fa69a549d4d49458564df2
humanhash: indigo-kentucky-gee-winter
File name:seethebesthtmlthingsreadyforgetme.hta
Download: download sample
Signature SnakeKeylogger
Create hunting rule
File size:166 bytes
First seen:2024-11-30 18:06:25 UTC
Last seen:Never
File type:HTML Application (hta) hta
MIME type:text/html
ssdeep 3:PouVKQMB3tGFUvNAHa7IM2LKt6toAcMwILLGRTEHmmCmKFzFSQiqMern:h4QW3tSUqHa8g60MwYLGRT09KxFSQfM2
TLSH T11EC08C3965451E0DAAB032F028E0B870ACF33268338828317880F3276ADED31C8E324C
Magika txt
Reporter abuse_ch
Tags:hta SnakeKeylogger

Intelligence

File Origin
# of uploads :
1
# of downloads :
96
Origin country :
DE DE
Vendor Threat Intelligence
Verdict:
Clean
Score:
99.9%
Link:
https://cyber-fortress.com/docs/result/index.php?id=674b55c404c232bff3b53701
Tags:
malware
Result
Verdict:
Clean
File Type:
HTA File
Link:
https://app.docguard.net/cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f/results/dashboard
Verdict:
Unknown
Threat level:
  10/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/674b5445b0c1f225b44ac044/reports/9bb28e78-bd65-4b83-aa0d-f619e5fd1ace/overview
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f
Result
Threat name:
n/a
Detection:
clean
Classification:
n/a
Score:
1 / 100
Link:
https://www.joesandbox.com/analysis/1565758
Behaviour
Behavior Graph:
n/a
Score:
0%
Verdict:
Benign
File Type:
SCRIPT
Link:
https://malprob.io/report/cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f/
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=z7r224vujpm3c45huqhkx4tkhxn3bcvjdqsq6lcuakszrcaney7q._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
discovery
Link:
https://tria.ge/reports/241130-wqafwavkgn/
Behaviour
Modifies Internet Explorer settings
System Location Discovery: System Language Discovery
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Malicious File
Score:
1.00
Link:
https://yomi.yoroi.company/submissions/cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

SnakeKeylogger

HTML Application (hta) hta cfe3ad72b44bd9b173a7a40eabf26a3ddbb08aa91c250f2c5402a598880d263f

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3237677/
  
Delivery method
Distributed via web download
  
URLhaus
https://urlhaus.abuse.ch/url/3239542/
  
URLhaus
https://urlhaus.abuse.ch/url/3235734/
  
URLhaus
https://urlhaus.abuse.ch/url/3236390/

Comments