Resubmissions

11-03-2024 18:13

240311-wt84lscc85 10

11-03-2024 18:11

240311-wsr4psac4w 10

11-03-2024 18:07

240311-wqc7rsab61 10

11-03-2024 18:04

240311-wnzmzsab2z 10

11-03-2024 18:00

240311-wlhlpaca96 10

11-03-2024 17:08

240311-vnv45aha3s 10

General

  • Target

    UpdateCallRequestsV1.exe

  • Size

    16.8MB

  • MD5

    71a3eba8726f006d0536b4a03d34654e

  • SHA1

    52b5b6a6f51bfcf902eaeaf36f23cb288669c8d7

  • SHA256

    176f172959077b7ac0cdf8499dbbe4c322ba5a9a06326f4b9890703830f7353b

  • SHA512

    67c97473f691831d3240f5a6016b8dc5e8ffa3675607bef10fa75fad70623a1b8ff1814e658aedc952dee8ce4cc19b91479bcb3c00aeff17cf311f91caeee2d6

  • SSDEEP

    393216:OVEkMDOnd0QjTGtDTMW+eGQRCMTozGxu8C0ibfz6eKk7xGb8X6Wkg0:yUDCGuG5YW+e5RLoztZ026eKk0bLg0

Malware Config

Signatures

  • An infostealer written in Python and packaged with PyInstaller. 1 IoCs
  • Crealstealer family
  • Detects Pyinstaller 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • UpdateCallRequestsV1.exe
    .exe windows:5 windows x64 arch:x64

    Password: leon2013#

    1af6c885af093afc55142c2f1761dbe8


    Headers

    Imports

    Sections

  • UpdateCallRequests.pyc