General

  • Target

    FakeLunar.exe

  • Size

    6.8MB

  • MD5

    bc1a33d80f6f85785642d354371c2d9c

  • SHA1

    be193d50776e0366e033507edb33100125784846

  • SHA256

    79e54f06089115b64beb47464b4ced5f4c3f903f139608c1c8a6120575d3c1a8

  • SHA512

    6aae5e9901b97195f57cc53d9bd3e2deb34871221327b32041b26132be97e3cff1e72761a1bc1eaa8069dbcbce4e27b7a49c87ae6b5616da74d6fe4381cfc706

  • SSDEEP

    98304:E9kwN+MdA5wqM48MMhJMjarJaon7JPzf+JiUCS3swhzqgez7DoDZDJ1n6hBnLnz6:E9V1nB6ylnlPzf+JiJCsmFMvcn6hVv6

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • FakeLunar.exe
    .exe windows:6 windows x64 arch:x64

    72c4e339b7af8ab1ed2eb3821c98713a


    Code Sign

    Headers

    Imports

    Sections

  • *.�j�+�.pyc