General

  • Target

    FINDSTR.zip

  • Size

    7.7MB

  • MD5

    28c2116b3456b2c2f48d632017f0144f

  • SHA1

    8ea46a84f0577dd829c05c9a7d446f0690e17f43

  • SHA256

    916b8ee5adebecb8d0cb1d813009dae0e8ca6e1948043aa1e2662ac678f8e3ed

  • SHA512

    02c71bbce4e7c38bf2e49e8920a3ec0cd360335de734403da88db2250d9fed54564d5936ef8cffc39c84cd63f30dc19ba9ff023269c6704b74dce43fbf023a0b

  • SSDEEP

    196608:ujO9WLFN7khFvLF3MkRUT+rA3G5mIuPjfrZoUsZ0ZayRG:H9uFNCLF3MkiT+rAZ7PjTZjsZwRG

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • FINDSTR.zip
    .zip

    Password: infected

  • FINDSTR.EXE
    .exe windows:5 windows x64 arch:x64

    0b5552dccd9d0a834cea55c0c8fc05be


    Code Sign

    Headers

    Imports

    Sections

  • �Q���`�.pyc