Rewterz Threat Alert – APT MustangPanda – Active IOCs
July 19, 2022Rewterz Threat Alert – APT29 Cozy Bear – Active IOCs
July 19, 2022Rewterz Threat Alert – APT MustangPanda – Active IOCs
July 19, 2022Rewterz Threat Alert – APT29 Cozy Bear – Active IOCs
July 19, 2022Severity
Medium
Analysis Summary
Snake is a modular .NET keylogger and credential stealer first spotted in late November 2020. Since then, new campaigns spreading this malware have been seen almost daily. Snake’s name was derived from strings found in its log files and string obfuscation code. Using the malware’s builder, a threat actor can select and configure desired features then generate new payloads. For this reason, the capabilities of samples found in the wild can vary.
Impact
- Credential Theft
Indicators of Compromise
MD5
- 59661a407b083849bb6994f0265f1a25
SHA-256
- bfe01c299c37aaaf07907c07836747cb58dc213adb4aeca741a0007be14824a4
SHA-1
- c73eab8fa30e7b9de61aa72fb77f11c9bbcd4004
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment