General

  • Target

    release (1).rar

  • Size

    21.7MB

  • MD5

    1851c5e1408ac3b2422e279cddd009c6

  • SHA1

    a710f97df0f1f982389334968b8c91b90aacd16d

  • SHA256

    d6d965e1b1c9ed21da250b2b90e34f1985fe0151e0c1904155c0d566946422de

  • SHA512

    e7bbdb795f559984127cf7141358115c2332880f8469018ead9bdca4ed55a7a8e84f968b07027a74bf64035abd16a3b9bad6e876e293e9a783368f4557e44c62

  • SSDEEP

    393216:Da7UEFfXq3iQa2lxUZygg8M5Hsa7UEFfXq3iQa2lxUZygg8M5HXa7UEFfXq3iQaR:cUI6ZMc98MvUI6ZMc98MuUI6ZMc98MO

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 3 IoCs
  • Blankgrabber family

Files

  • release (1).rar
    .rar
  • release/main/cheat.exe
    .exe windows:5 windows x64 arch:x64

    2ac23c52e7647c5bbea38e98bb68c652


    Code Sign

    Headers

    Imports

    Sections

  • ��:>Q��.pyc
  • release/main/loader.exe
    .exe windows:5 windows x64 arch:x64

    2ac23c52e7647c5bbea38e98bb68c652


    Code Sign

    Headers

    Imports

    Sections

  • ��:>Q��.pyc
  • release/map/map.exe
    .exe windows:5 windows x64 arch:x64

    2ac23c52e7647c5bbea38e98bb68c652


    Code Sign

    Headers

    Imports

    Sections

  • ��:>Q��.pyc