menu_book Malware Family

Snake Keylogger

Also known as: SnakeKeylogger, 404 Keylogger

Snake Keylogger is a .NET-based credential stealer and keylogger that records keystrokes, captures screenshots and clipboard data, and harvests saved credentials from browsers and email clients. It is distributed through phishing and sold on underground markets.

What is Snake Keylogger?

Snake Keylogger is a commodity stealer/keylogger that captures keystrokes, screenshots, and clipboard data, and extracts saved credentials from browsers and email applications. It exfiltrates over channels such as SMTP, FTP, and Telegram.

Distribution

Snake spreads primarily through phishing emails with malicious Office or archive attachments, frequently using business-themed lures.

How VantaPrism Tracks Snake Keylogger

VantaPrism surfaces credentials harvested by keylogger-stealers like Snake when they appear in monitored channels, extending visibility beyond pure browser-based stealers.

Check Your Exposure arrow_forward

Frequently Asked Questions

How does Snake Keylogger exfiltrate data?

expand_more

It commonly sends stolen data over SMTP (email), FTP, or Telegram to attacker-controlled destinations.

Related Terms

Keylogger arrow_outward

A keylogger is malware or hardware that records a user's keystrokes to capture passwords, messages, and other sensiti…

Infostealer Malware arrow_outward

Infostealer malware is a category of malicious software designed to silently harvest sensitive data — passwords, sess…

Phishing arrow_outward

Phishing is a social-engineering attack that deceives victims into revealing credentials or running malware, usually…

Compromised Credentials arrow_outward

Compromised credentials are usernames and passwords that have been exposed to unauthorized parties — frequently throu…

← All Glossary Terms Last reviewed: June 2026