Resubmissions
08-08-2023 04:11
230808-er5jzaae36 10
General
-
Target
Fortnite Balls.exe
-
Size
26.4MB
-
MD5
acfcce2bfbc7bccd9c38757fe165e1f9
-
SHA1
113f5295026bd2e5b5aecdfea817842e8564e671
-
SHA256
bbfc8e548d2bde2e43b501b54b82bd75267e4b7fb9cbf5dfd76971b838c87858
-
SHA512
2f5d7ced66e3aa8238cc8c857e6ed34f2c3509f12a242f5c46fa8dc4b794601d11f052442b61aeed1f024175cb077610637db9443dc915f0e4b179f67a7ff7ea
-
SSDEEP
393216:Y/Fqyf/gsteVbFVQPndQuslSq9RoWOv+9fgSPBfMHKf:Y42QVbXQPndQuSborvSYSP+HO
Score
10/10
Malware Config
Signatures
-
Contains code to disable Windows Defender 1 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
-
StormKitty payload 1 IoCs
-
Stormkitty family
-
Detects Pyinstaller 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Fortnite Balls.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections
-
Creal.pyc