Malware Hunter JAMESWT Technical Analysis

The “Quotation” themed SnakeKeylogger campaign is back. The email lzh attachment contains an exe file: the malware itself. Stolen data is exfiltrated via smtp

The “Quotation” themed SnakeKeylogger campaign is back.

The lzh attachment of the email contains an exe file: the malware itself. This, if open, activates the chain of infection. The goal of cybercrime is to steal sensitive data from victims, which are then exfiltrated via smtp.

SnakeKeylogger, in fact, is an info stealer capable of acquiring information through various methods.