HOMETHREATS404 Keylogger
APT / THREAT GROUP

404 Keylogger

4
aliases
Last seen:Mar 17, 2026

Intelligence Profile

Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victim’s sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram.

Threat Analysis

404 Keylogger is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases4

Also Known As

Snake Keylogger404 Keyloggerwin.404keylogger404KeyLogger

External Intelligence

Malpedia: win.404keylogger

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.
404 Keylogger — APT / Threat Group | Threat Intelligence | CTIWATCH.COM