Snake keylogger is a program whose main functionality is to record users’ keystrokes and transmit the collected data to threat actors.
An infection with Snake poses a huge threat to the online privacy and security of affected users, considering that this malware can extract virtually all kinds of information: usernames, passwords, other login credentials, bank/card details of credit. According to the researchers, Snake can also leak information stored in some of the most popular Internet browsers, email clients, and messaging platforms, including Google Chrome, Opera, Mozilla Firefox, Microsoft Outlook, Foxmail, and others.
Snake Keylogger can take screenshots and extract data from the copy/paste buffer. After damaging victim accounts, threat actors operating Snake could induce fraudulent financial transactions and online purchases or hijack and hold for ransom various files, documents, and other important information. In short, Snake Keylogger causes financial loss, privacy issues, and even identity theft; therefore, it should be removed immediately after detection.
In terms of distribution channels, Snake Keylogger can be purchased on underground hacking forums at prices ranging from 25 to 500 USD currently. The costs depend on the level of support, the time of operation and the range of functionality / customization.
This threat has already appeared for a few years, however cybercriminals have managed to continue to take advantage of users and infect their computers through new campaigns, despite making users aware of the detection of these tactics, the adversary continues to find different ways to evade detection, in the case now PDF malware is used, a method that uses a pdf to transport a Microsoft Word file (.docx) that has malicious macros capable of downloading and installing malware so We must be careful what we download.
