PySilon-malware-3[.]2[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

PySilon-malware-3.2.zip
Size

419KB
MD5

6be377645f6c7615a630af6eef9c7804
SHA1

e1055dcbb3e5cb9699c2294a47b824802bc22688
SHA256

af420c31fed0b65924da460df36749e895dc928d0b1572f6dc6498334c8b455a
SHA512

1128ffcb1f57c62d855a66746b79e14a2251dbc16f4c8294e37097912a97ef47917c18952d48252ce165e480f78fa4cc48b03cb15ce77682f35ec8d78344c84e
SSDEEP

12288:kmOcj/sEvL0KMPGRrAXzDgL0HzBul7r6EtPy:ecjVL0KMPI8XHgQHkl/9tPy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PySilon-malware-3.2/resources/libopus-0.x64.dll

Files

PySilon-malware-3.2.zip
.zip

Password: lol
PySilon-malware-3.2/.github/ISSUE_TEMPLATE/bug_report.md
PySilon-malware-3.2/.github/ISSUE_TEMPLATE/feature_request.md
PySilon-malware-3.2/.github/ISSUE_TEMPLATE/if-you-are-unsure-pick-bug-report.md
PySilon-malware-3.2/.gitignore
PySilon-malware-3.2/CODE_OF_CONDUCT.md
PySilon-malware-3.2/CONTRIBUTING.md
PySilon-malware-3.2/LICENSE
PySilon-malware-3.2/PySilon-linux.sh
.sh linux
PySilon-malware-3.2/PySilon.bat
PySilon-malware-3.2/README.md
PySilon-malware-3.2/builder.py
PySilon-malware-3.2/compiler.py
PySilon-malware-3.2/configuration.ini
PySilon-malware-3.2/requirements.txt
PySilon-malware-3.2/resources/custom_imports.ini
PySilon-malware-3.2/resources/discord_token_grabber.py
PySilon-malware-3.2/resources/get_cookies.py
PySilon-malware-3.2/resources/icons/icon.ico
PySilon-malware-3.2/resources/libopus-0.x64.dll
.dll windows x64

Password: lol

a16037b80461374dbaac126287be81b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RtlUnwindEx
InterlockedFlushSList
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
RaiseException
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapAlloc
HeapFree
LCMapStringW
GetStdHandle
GetFileType
CloseHandle
GetConsoleMode
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
FlushFileBuffers
WriteFile
GetConsoleCP
SetStdHandle
CreateFileW
SetFilePointerEx
GetStringTypeW
HeapSize
WriteConsoleW

Exports

Exports

opus_decode
opus_decode_float
opus_decoder_create
opus_decoder_ctl
opus_decoder_destroy
opus_decoder_get_nb_samples
opus_decoder_get_size
opus_decoder_init
opus_encode
opus_encode_float
opus_encoder_create
opus_encoder_ctl
opus_encoder_destroy
opus_encoder_get_size
opus_encoder_init
opus_get_version_string
opus_multistream_decode
opus_multistream_decode_float
opus_multistream_decoder_create
opus_multistream_decoder_ctl
opus_multistream_decoder_destroy
opus_multistream_decoder_get_size
opus_multistream_decoder_init
opus_multistream_encode
opus_multistream_encode_float
opus_multistream_encoder_create
opus_multistream_encoder_ctl
opus_multistream_encoder_destroy
opus_multistream_encoder_get_size
opus_multistream_encoder_init
opus_multistream_packet_pad
opus_multistream_packet_unpad
opus_multistream_surround_encoder_create
opus_multistream_surround_encoder_get_size
opus_multistream_surround_encoder_init
opus_packet_get_bandwidth
opus_packet_get_nb_channels
opus_packet_get_nb_frames
opus_packet_get_nb_samples
opus_packet_get_samples_per_frame
opus_packet_pad
opus_packet_parse
opus_packet_unpad
opus_pcm_soft_clip
opus_projection_ambisonics_encoder_create
opus_projection_ambisonics_encoder_get_size
opus_projection_ambisonics_encoder_init
opus_projection_decode
opus_projection_decode_float
opus_projection_decoder_create
opus_projection_decoder_ctl
opus_projection_decoder_destroy
opus_projection_decoder_get_size
opus_projection_decoder_init
opus_projection_encode
opus_projection_encode_float
opus_projection_encoder_ctl
opus_projection_encoder_destroy
opus_repacketizer_cat
opus_repacketizer_create
opus_repacketizer_destroy
opus_repacketizer_get_nb_frames
opus_repacketizer_get_size
opus_repacketizer_init
opus_repacketizer_out
opus_repacketizer_out_range
opus_strerror

Sections

.text
Size: 319KB - Virtual size: 319KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PySilon-malware-3.2/resources/misc.py
PySilon-malware-3.2/resources/passwords_grabber.py
PySilon-malware-3.2/resources/source_code/block_input.py
PySilon-malware-3.2/resources/source_code/file_downloading.py
PySilon-malware-3.2/resources/source_code/file_explorer.py
PySilon-malware-3.2/resources/source_code/file_removal.py
PySilon-malware-3.2/resources/source_code/file_uploading.py
PySilon-malware-3.2/resources/source_code/grabber.py
PySilon-malware-3.2/resources/source_code/keylogger.py
PySilon-malware-3.2/resources/source_code/live_microphone.py
PySilon-malware-3.2/resources/source_code/microphone_recording.py
PySilon-malware-3.2/resources/source_code/process.py
PySilon-malware-3.2/resources/source_code/registry.py
PySilon-malware-3.2/resources/source_code/reverse_shell.py
PySilon-malware-3.2/resources/source_code/screenrec.py
PySilon-malware-3.2/resources/source_code/screenshot.py
PySilon-malware-3.2/resources/source_code/webcam.py
PySilon-malware-3.2/source.py
.py .ps1

Sharing

General

Malware Config

Signatures

Files

Password: lol

Password: lol

a16037b80461374dbaac126287be81b9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 319KB - Virtual size: 319KB

.rdata Size: 94KB - Virtual size: 94KB

.data Size: 3KB - Virtual size: 7KB

.pdata Size: 10KB - Virtual size: 10KB

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 319KB - Virtual size: 319KB

.rdata
Size: 94KB - Virtual size: 94KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 10KB - Virtual size: 10KB

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 2KB - Virtual size: 1KB