SYMBOLCOMMON_NAMEaka. SYNONYMS
win.404keylogger (Back to overview)

404 Keylogger

aka: 404KeyLogger, Snake Keylogger

Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victim’s sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram.

References
2021-07-12Cipher Tech SolutionsMelissa Frydrych, Claire Zaboeva, Dan Dash
@online{frydrych:20210712:roboski:a3c66bf, author = {Melissa Frydrych and Claire Zaboeva and Dan Dash}, title = {{RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation}}, date = {2021-07-12}, organization = {Cipher Tech Solutions}, url = {https://www.ciphertechsolutions.com/roboski-global-recovery-automation/}, language = {English}, urldate = {2021-07-20} } RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation
404 Keylogger Agent Tesla AsyncRAT Ave Maria Azorult BitRAT Formbook HawkEye Keylogger Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT Quasar RAT RedLine Stealer Remcos
2021-07-12IBMMelissa Frydrych, Claire Zaboeva, Dan Dash
@online{frydrych:20210712:roboski:1f66418, author = {Melissa Frydrych and Claire Zaboeva and Dan Dash}, title = {{RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation}}, date = {2021-07-12}, organization = {IBM}, url = {https://securityintelligence.com/posts/roboski-global-recovery-automation/}, language = {English}, urldate = {2021-07-20} } RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation
404 Keylogger Agent Tesla AsyncRAT Ave Maria Azorult BitRAT Formbook HawkEye Keylogger Loki Password Stealer (PWS) Nanocore RAT NetWire RC NjRAT Quasar RAT RedLine Stealer Remcos
2021-06-28HPPatrick Schläpfer
@online{schlpfer:20210628:snake:bf10d9d, author = {Patrick Schläpfer}, title = {{Snake Keylogger’s Many Skins: Analysing Code Reuse Among Infostealers}}, date = {2021-06-28}, organization = {HP}, url = {https://threatresearch.ext.hp.com/the-many-skins-of-snake-keylogger/}, language = {English}, urldate = {2021-06-29} } Snake Keylogger’s Many Skins: Analysing Code Reuse Among Infostealers
404 Keylogger Phoenix Keylogger
2021-06-07Twitter (@James_inthe_box)James_inthe_box
@online{jamesinthebox:20210607:characteristic:1e8d734, author = {James_inthe_box}, title = {{Tweet on characteristic strings in snake keylogger}}, date = {2021-06-07}, organization = {Twitter (@James_inthe_box)}, url = {https://twitter.com/James_inthe_box/status/1401921257109561353}, language = {English}, urldate = {2021-06-08} } Tweet on characteristic strings in snake keylogger
404 Keylogger
2021-01InfobloxEric Patterson
@online{patterson:202101:snake:630eaec, author = {Eric Patterson}, title = {{Snake Keylogger Slithers Through Malspam}}, date = {2021-01}, organization = {Infoblox}, url = {https://insights.infoblox.com/threat-intelligence-reports/threat-intelligence--102}, language = {English}, urldate = {2021-05-26} } Snake Keylogger Slithers Through Malspam
404 Keylogger
2020-10-20InfobloxJames Barnett
@online{barnett:20201020:404:c398034, author = {James Barnett}, title = {{404 Keylogger Campaigns}}, date = {2020-10-20}, organization = {Infoblox}, url = {https://insights.infoblox.com/threat-intelligence-reports/threat-intelligence--89}, language = {English}, urldate = {2021-02-24} } 404 Keylogger Campaigns
404 Keylogger
2019-11-27Group-IBIlya Pomerantsev
@online{pomerantsev:20191127::4345ace, author = {Ilya Pomerantsev}, title = {{Кейлоггер с сюрпризом: анализ клавиатурного шпиона и деанон его разработчика}}, date = {2019-11-27}, organization = {Group-IB}, url = {https://habr.com/ru/company/group-ib/blog/477198/}, language = {Russian}, urldate = {2020-03-23} } Кейлоггер с сюрпризом: анализ клавиатурного шпиона и деанон его разработчика
404 Keylogger

There is no Yara-Signature yet.