General

  • Target

    sorlishit.exe

  • Size

    14.0MB

  • MD5

    553e44d9cca9839e75eb70fe8b68f57a

  • SHA1

    65e616ee74f4d7b770e1d2a931bd59e0cdb0877e

  • SHA256

    ab596cc6b870d787684a674ea54faf89fa6a6581f17780aa69bf7f1201161faf

  • SHA512

    131788dbc2999142f0e4ecdea00c2dd2f1b3a1fd8f0498695199b930216192386a7a2800fc772894babc4f04b5049a69b03de09a1d3bae4500c1b49c92e793b7

  • SSDEEP

    196608:oAtEzRFLjv+bhqNVoB8Ck5c7GpNlpq41J2ySExbk98tlDfJ:FYL+9qz88Ck+7q3p91JmP0f

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • sorlishit.exe
    .exe windows:5 windows x64 arch:x64

    1af6c885af093afc55142c2f1761dbe8


    Headers

    Imports

    Sections

  • �o1 `�.pyc