Overview

overview

3

Static

static

3

main.rar

windows11-21h2-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    main.rar

  • Size

    13.7MB

  • MD5

    374ec60053e554eb3450df3cc2b87dcd

  • SHA1

    541694406fee9eedb06e96f12cf0d3053e4505df

  • SHA256

    e5919d28d0ac32e8a87ba506be03bf3595b1e1bb079085d64adb5af7603169a5

  • SHA512

    90db0156208d176cb42846134f1f7f7c021f9a2a55d2939770514e2b783277a802ea87c092eefad366601d337e53584869426fa930c7492c29378123a900b250

  • SSDEEP

    393216:M6i0ZhGO4t+4vDRo/Eu86MJhxC0PGXm91w4xOe:ckGJ+4va/Eu8pJhlGXm91w4V

Score
3/10
pyinstaller

Malware Config

Signatures

  • Detects Pyinstaller 1 IoCs
    pyinstaller
  • Unsigned PE 46 IoCs

    Checks for missing Authenticode signature.

Files

  • main.rar
    .rar
  • _internal/Crypto/Cipher/_ARC4.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_Salsa20.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_chacha20.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_pkcs1_decode.pyd
    .dll windows:6 windows x64 arch:x64

    6df60195fdd7452f8a843a51882190b8


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_aes.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_aesni.pyd
    .dll windows:6 windows x64 arch:x64

    bc234f2877830bc99ce39286541d6ef1


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_arc2.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_blowfish.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_cast.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_cbc.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_cfb.pyd
    .dll windows:6 windows x64 arch:x64

    b7b86a79048044d07db6b7de63b7c90e


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_ctr.pyd
    .dll windows:6 windows x64 arch:x64

    bc234f2877830bc99ce39286541d6ef1


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_des.pyd
    .dll windows:6 windows x64 arch:x64

    1ec87bbeffbe3bb450c29176d904b690


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_des3.pyd
    .dll windows:6 windows x64 arch:x64

    1ec87bbeffbe3bb450c29176d904b690


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_ecb.pyd
    .dll windows:6 windows x64 arch:x64

    760d82578721a074ac240db77368fcb0


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_eksblowfish.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_ocb.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Cipher/_raw_ofb.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_BLAKE2b.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_BLAKE2s.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_MD2.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_MD4.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_MD5.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_RIPEMD160.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_SHA1.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_SHA224.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_SHA256.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_SHA384.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_SHA512.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_ghash_clmul.pyd
    .dll windows:6 windows x64 arch:x64

    5ce92e7d1c0a7d3c28338120fb91aa68


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_ghash_portable.pyd
    .dll windows:6 windows x64 arch:x64

    200e5a8a397640442ee9fed8ad5a7ecb


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_keccak.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Hash/_poly1305.pyd
    .dll windows:6 windows x64 arch:x64

    2d71f25096805592caf0d27ca08982e5


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Math/_modexp.pyd
    .dll windows:6 windows x64 arch:x64

    76fdee7f152f5f03a0f34aa1cf7a8c79


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Protocol/_scrypt.pyd
    .dll windows:6 windows x64 arch:x64

    4ad07fe3afee3f621a47d59bc3c712f3


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/PublicKey/_ec_ws.pyd
    .dll windows:6 windows x64 arch:x64

    cdd6995c30329a77a5295ae502a42975


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/PublicKey/_ed25519.pyd
    .dll windows:6 windows x64 arch:x64

    f99664aebbac23e97e359e82f217470f


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/PublicKey/_ed448.pyd
    .dll windows:6 windows x64 arch:x64

    5722a5dc6fe65dcd39d26c76976ce230


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/PublicKey/_x25519.pyd
    .dll windows:6 windows x64 arch:x64

    bcca5f280737ee70d2e6d3cc1cfa5779


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Util/_cpuid_c.pyd
    .dll windows:6 windows x64 arch:x64

    760d82578721a074ac240db77368fcb0


    Headers

    Imports

    Exports

    Sections

  • _internal/Crypto/Util/_strxor.pyd
    .dll windows:6 windows x64 arch:x64

    760d82578721a074ac240db77368fcb0


    Headers

    Imports

    Exports

    Sections

  • _internal/VCRUNTIME140.dll
    .dll windows:6 windows x64 arch:x64

    7f07fd94e5bb907093556781cc464017


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_asyncio.pyd
    .dll windows:6 windows x64 arch:x64

    9d434eba59ce931bdee5b38eec4b196b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_bz2.pyd
    .dll windows:6 windows x64 arch:x64

    d0a62ab71a2b2ca69c6aba1f0a37fcdd


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_cffi_backend.cp311-win_amd64.pyd
    .dll windows:6 windows x64 arch:x64

    1f8568e4a2373d2e7c1bf07e57b0e0f4


    Headers

    Imports

    Exports

    Sections

  • _internal/_ctypes.pyd
    .dll windows:6 windows x64 arch:x64

    e716aa549ea6dfb7b233942c7f07ff87


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_decimal.pyd
    .dll windows:6 windows x64 arch:x64

    73c2b50451f272a440f47564c3cbd631


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_hashlib.pyd
    .dll windows:6 windows x64 arch:x64

    b3b294bbb4a8941fd67b11ccbe0be65b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_lzma.pyd
    .dll windows:6 windows x64 arch:x64

    c39c7a021b2adfc11bb34f105f70355e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_multiprocessing.pyd
    .dll windows:6 windows x64 arch:x64

    ad5e2bc3f4742dadfaf9e74afc91a9f0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_overlapped.pyd
    .dll windows:6 windows x64 arch:x64

    48664681fdde7330197ca0b81cd0888e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_queue.pyd
    .dll windows:6 windows x64 arch:x64

    d39104d594ed5774205f94197c63bfbc


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_socket.pyd
    .dll .js windows:6 windows x64 arch:x64 polyglot

    332065e5d19d708832b034da27e5571a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/_ssl.pyd
    .dll windows:6 windows x64 arch:x64

    ba77dcd459076e05d402c6e9b4f52171


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/base_library.zip
    .zip
  • _collections_abc.pyc
  • _weakrefset.pyc
  • abc.pyc
  • codecs.pyc
  • collections/__init__.pyc
  • collections/abc.pyc
  • copyreg.pyc
  • encodings/__init__.pyc
  • encodings/aliases.pyc
  • encodings/ascii.pyc
  • encodings/base64_codec.pyc
  • encodings/big5.pyc
  • encodings/big5hkscs.pyc
  • encodings/bz2_codec.pyc
  • encodings/charmap.pyc
  • encodings/cp037.pyc
  • encodings/cp1006.pyc
  • encodings/cp1026.pyc
  • encodings/cp1125.pyc
  • encodings/cp1140.pyc
  • encodings/cp1250.pyc
  • encodings/cp1251.pyc
  • encodings/cp1252.pyc
  • encodings/cp1253.pyc
  • encodings/cp1254.pyc
  • encodings/cp1255.pyc
  • encodings/cp1256.pyc
  • encodings/cp1257.pyc
  • encodings/cp1258.pyc
  • encodings/cp273.pyc
  • encodings/cp424.pyc
  • encodings/cp437.pyc
  • encodings/cp500.pyc
  • encodings/cp720.pyc
  • encodings/cp737.pyc
  • encodings/cp775.pyc
  • encodings/cp850.pyc
  • encodings/cp852.pyc
  • encodings/cp855.pyc
  • encodings/cp856.pyc
  • encodings/cp857.pyc
  • encodings/cp858.pyc
  • encodings/cp860.pyc
  • encodings/cp861.pyc
  • encodings/cp862.pyc
  • encodings/cp863.pyc
  • encodings/cp864.pyc
  • encodings/cp865.pyc
  • encodings/cp866.pyc
  • encodings/cp869.pyc
  • encodings/cp874.pyc
  • encodings/cp875.pyc
  • encodings/cp932.pyc
  • encodings/cp949.pyc
  • encodings/cp950.pyc
  • encodings/euc_jis_2004.pyc
  • encodings/euc_jisx0213.pyc
  • encodings/euc_jp.pyc
  • encodings/euc_kr.pyc
  • encodings/gb18030.pyc
  • encodings/gb2312.pyc
  • encodings/gbk.pyc
  • encodings/hex_codec.pyc
  • encodings/hp_roman8.pyc
  • encodings/hz.pyc
  • encodings/idna.pyc
  • encodings/iso2022_jp.pyc
  • encodings/iso2022_jp_1.pyc
  • encodings/iso2022_jp_2.pyc
  • encodings/iso2022_jp_2004.pyc
  • encodings/iso2022_jp_3.pyc
  • encodings/iso2022_jp_ext.pyc
  • encodings/iso2022_kr.pyc
  • encodings/iso8859_1.pyc
  • encodings/iso8859_10.pyc
  • encodings/iso8859_11.pyc
  • encodings/iso8859_13.pyc
  • encodings/iso8859_14.pyc
  • encodings/iso8859_15.pyc
  • encodings/iso8859_16.pyc
  • encodings/iso8859_2.pyc
  • encodings/iso8859_3.pyc
  • encodings/iso8859_4.pyc
  • encodings/iso8859_5.pyc
  • encodings/iso8859_6.pyc
  • encodings/iso8859_7.pyc
  • encodings/iso8859_8.pyc
  • encodings/iso8859_9.pyc
  • encodings/johab.pyc
  • encodings/koi8_r.pyc
  • encodings/koi8_t.pyc
  • encodings/koi8_u.pyc
  • encodings/kz1048.pyc
  • encodings/latin_1.pyc
  • encodings/mac_arabic.pyc
  • encodings/mac_croatian.pyc
  • encodings/mac_cyrillic.pyc
  • encodings/mac_farsi.pyc
  • encodings/mac_greek.pyc
  • encodings/mac_iceland.pyc
  • encodings/mac_latin2.pyc
  • encodings/mac_roman.pyc
  • encodings/mac_romanian.pyc
  • encodings/mac_turkish.pyc
  • encodings/mbcs.pyc
  • encodings/oem.pyc
  • encodings/palmos.pyc
  • encodings/ptcp154.pyc
  • encodings/punycode.pyc
  • encodings/quopri_codec.pyc
  • encodings/raw_unicode_escape.pyc
  • encodings/rot_13.pyc
  • encodings/shift_jis.pyc
  • encodings/shift_jis_2004.pyc
  • encodings/shift_jisx0213.pyc
  • encodings/tis_620.pyc
  • encodings/undefined.pyc
  • encodings/unicode_escape.pyc
  • encodings/utf_16.pyc
  • encodings/utf_16_be.pyc
  • encodings/utf_16_le.pyc
  • encodings/utf_32.pyc
  • encodings/utf_32_be.pyc
  • encodings/utf_32_le.pyc
  • encodings/utf_7.pyc
  • encodings/utf_8.pyc
  • encodings/utf_8_sig.pyc
  • encodings/uu_codec.pyc
  • encodings/zlib_codec.pyc
  • enum.pyc
  • functools.pyc
  • genericpath.pyc
  • heapq.pyc
  • io.pyc
  • keyword.pyc
  • linecache.pyc
  • locale.pyc
  • ntpath.pyc
  • operator.pyc
  • os.pyc
  • posixpath.pyc
  • re/__init__.pyc
  • re/_casefix.pyc
  • re/_compiler.pyc
  • re/_constants.pyc
  • re/_parser.pyc
  • reprlib.pyc
  • sre_compile.pyc
  • sre_constants.pyc
  • sre_parse.pyc
  • stat.pyc
  • traceback.pyc
  • types.pyc
  • warnings.pyc
  • weakref.pyc
  • _internal/certifi/cacert.pem
  • _internal/charset_normalizer/md.cp311-win_amd64.pyd
    .dll windows:6 windows x64 arch:x64

    f8c0f377107b03e523f21dcf227dcf24


    Headers

    Imports

    Exports

    Sections

  • _internal/charset_normalizer/md__mypyc.cp311-win_amd64.pyd
    .dll windows:6 windows x64 arch:x64

    feb2f48749cb30e4f1a2a48b5a94a37c


    Headers

    Imports

    Exports

    Sections

  • _internal/cryptography-41.0.7.dist-info/INSTALLER
  • _internal/cryptography-41.0.7.dist-info/LICENSE
  • _internal/cryptography-41.0.7.dist-info/LICENSE.APACHE
  • _internal/cryptography-41.0.7.dist-info/LICENSE.BSD
  • _internal/cryptography-41.0.7.dist-info/METADATA
  • _internal/cryptography-41.0.7.dist-info/RECORD
  • _internal/cryptography-41.0.7.dist-info/WHEEL
  • _internal/cryptography-41.0.7.dist-info/top_level.txt
  • _internal/cryptography/hazmat/bindings/_rust.pyd
    .dll windows:6 windows x64 arch:x64

    82014bce2da50af26d12bb198c8c2d6f


    Headers

    Imports

    Exports

    Sections

  • _internal/libcrypto-1_1.dll
    .dll windows:6 windows x64 arch:x64

    11f2ed72076bbf7871eb95fd5b4e84b0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/libffi-8.dll
    .dll windows:6 windows x64 arch:x64

    3dc8b86d60f90a1851eee5f9dc191312


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/libssl-1_1.dll
    .dll windows:6 windows x64 arch:x64

    3adf02a15243fccc51beb2b37fbf071d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/pyexpat.pyd
    .dll windows:6 windows x64 arch:x64

    cfa32f0abc6ae85c4b2078212640c054


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/python3.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Exports

    Sections

  • _internal/python311.dll
    .dll windows:6 windows x64 arch:x64

    5714829f48aacde8f83e3e5f0ead1f49


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/select.pyd
    .dll windows:6 windows x64 arch:x64

    fc4f7d736924aa67a1bd7b7b80894df9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/unicodedata.pyd
    .dll windows:6 windows x64 arch:x64

    bb6f6d951dbdd290ecf382ca57459172


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • _internal/wheel-0.42.0.dist-info/INSTALLER
  • _internal/wheel-0.42.0.dist-info/LICENSE.txt
  • _internal/wheel-0.42.0.dist-info/METADATA
  • _internal/wheel-0.42.0.dist-info/RECORD
  • _internal/wheel-0.42.0.dist-info/WHEEL
  • _internal/wheel-0.42.0.dist-info/entry_points.txt
  • main.exe
    .exe windows:5 windows x64 arch:x64

    bae3d3e8262d7ce7e9ee69cc1b630d3a


    Headers

    Imports

    Sections

  • main.pyc