General

  • Target

    Venus Tool.zip

  • Size

    9.5MB

  • MD5

    93002d26791ba6a2a3a0c9b6e56a724f

  • SHA1

    698baf5174c5d6f4c09702f9db6cdd709ed1945b

  • SHA256

    52cf7db1923f0518fca3f6f8838312e5241c5faf5bd9a834a54640e0561a79f0

  • SHA512

    eed38e08f34b1a0566d4d924b15b5bf61e33405d66616e5a1d4f2edef07ecf7c7fe7429fc18be107775f4d6a2eb125839855386d3f195db15c6c475c59dedfab

  • SSDEEP

    196608:qQXyE46kTQXurPdEA1lH2li/YASP8lyc59bl3QDUoCbn9rOceHCJoYQO:jq6kTQX0dEAalJ6LpADPQ9ioJF

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Venus Tool.zip
    .zip
  • assets/avatars/image.png
    .png
  • assets/config.json
  • crack.dll
    .dll windows:4 windows x64 arch:x64


    Headers

    Exports

    Sections

  • v.exe
    .exe windows:5 windows x64 arch:x64

    2ac23c52e7647c5bbea38e98bb68c652


    Code Sign

    Headers

    Imports

    Sections

  • Q��{�y.pyc