pysilon | protected[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

protected.exe
Size

105.0MB
MD5

d0a06044d1af2eabce740cb7d3d4776a
SHA1

6d93ce7275efcf6714a69574cadc2a0770740df8
SHA256

0590456b2bd0ab1f337f48d99eaa51211936a40fa43816eb391559d5eccfa0ba
SHA512

858b1d2d8c2de51da513f1b855369f592bd2e4eb259508ab967915dbd66238b8b75c1c53d9c99b053f9c274c06cf1c037277b76a804ff0906cd6ae05e9965603
SSDEEP

3145728:1yV8UYi7pa8S6xjKcBa6c2qHO5iVY2nGQbRe0zJcBW1yJAX9U:1y3pVBSWNa6sHCiH1XcBWr

Score

10^/10

pysilon

Malware Config

Signatures

Detect Pysilon 1 IoCs

resource	yara_rule
static1/unpack001/source_prepared.pyc	pysilon

Pysilon family
pysilon

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
protected.exe

Files

protected.exe
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 85KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 37KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 297KB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
discord_token_grabber.pyc
get_cookies.pyc
misc.pyc
passwords_grabber.pyc
source_prepared.pyc

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

Size: 85KB - Virtual size: 164KB

Size: 37KB - Virtual size: 76KB

Size: 512B - Virtual size: 32KB

Size: - Virtual size: 12KB

Size: 512B - Virtual size: 120KB

Size: 1KB - Virtual size: 4KB

.rsrc Size: 120KB - Virtual size: 120KB

Size: 297KB - Virtual size: 5.4MB

Size: 1.6MB - Virtual size: 1.6MB

.rsrc
Size: 120KB - Virtual size: 120KB