Overview

overview

10

Static

static

10

b27cdbd570...27.exe

windows7-x64

10

b27cdbd570...27.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b27cdbd5705c56034999011911997559d5eecb66e2e0d8b8c9aa843fe05d1627.exe

  • Size

    8.0MB

  • MD5

    a0936899fbf31493bbe5e34dc18a9341

  • SHA1

    1634a9e1759962db670bf244b1b3f5a9e71a25d7

  • SHA256

    b27cdbd5705c56034999011911997559d5eecb66e2e0d8b8c9aa843fe05d1627

  • SHA512

    1916ca8eda84abec46cc6a932d350b5baeaa7b46876c6788f670d418157dcc3e18c73fe884100489b6b294e37e899c39442485ee1de2cd1f4b12ef8793f5e562

  • SSDEEP

    98304:ppzdbM+Q2y+aq02EPzxjOjFgFQlwq4Mjk+dBZtu9xTtwz/aer6/BbiEJ1nL2hBnI:pDf07JOjmFQR4MVGFtwLPsnL2hVGBZ

Score
10/10
ratdcratblankgrabber

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family
    blankgrabber
  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b27cdbd5705c56034999011911997559d5eecb66e2e0d8b8c9aa843fe05d1627.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ���Yiڐ.pyc