Overview

overview

10

Static

static

10

source_prepared.exe

windows7-x64

7

source_prepared.exe

windows10-2004-x64

7

discord_to...er.pyc

windows7-x64

3

discord_to...er.pyc

windows10-2004-x64

3

get_cookies.pyc

windows7-x64

3

get_cookies.pyc

windows10-2004-x64

3

misc.pyc

windows7-x64

3

misc.pyc

windows10-2004-x64

3

passwords_grabber.pyc

windows7-x64

3

passwords_grabber.pyc

windows10-2004-x64

3

protections.pyc

windows7-x64

3

protections.pyc

windows10-2004-x64

3

source_prepared.pyc

windows7-x64

3

source_prepared.pyc

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    source_prepared.exe

  • Size

    10.3MB

  • Sample

    241019-yxq4bawdne

  • MD5

    9ea7abaec2e7485e782f1ec0d331388c

  • SHA1

    30539fdbd2f53458576f210e2186ca3152e351f9

  • SHA256

    6ad00a113e2f70f9ed6af286fee6da9b45e81b2e71761d7519cf6b00dc46175f

  • SHA512

    c95b62ac7df9aaea71e5c2ef86a63837adb4e482b86e47f630c8ab27e8fc3ab9a6c2f0d834edb9faba3bf62b88515962e4166bab90c3cf72b0a910fb35f1ca4b

  • SSDEEP

    196608:4qin3DxOpJlXC4NmNumGOEJohaDjx4a0FAwYxM4JBXak7jCqbv7:4bnTxOpJUi/raMjm2BPJYk7v

Score
10/10
pysilondiscoverypyinstallerupx

Malware Config

Targets

    • Target

      source_prepared.exe

    • Size

      10.3MB

    • MD5

      9ea7abaec2e7485e782f1ec0d331388c

    • SHA1

      30539fdbd2f53458576f210e2186ca3152e351f9

    • SHA256

      6ad00a113e2f70f9ed6af286fee6da9b45e81b2e71761d7519cf6b00dc46175f

    • SHA512

      c95b62ac7df9aaea71e5c2ef86a63837adb4e482b86e47f630c8ab27e8fc3ab9a6c2f0d834edb9faba3bf62b88515962e4166bab90c3cf72b0a910fb35f1ca4b

    • SSDEEP

      196608:4qin3DxOpJlXC4NmNumGOEJohaDjx4a0FAwYxM4JBXak7jCqbv7:4bnTxOpJUi/raMjm2BPJYk7v

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      discord_token_grabber.pyc

    • Size

      8KB

    • MD5

      05b1abcf2b8f1457cee0f078bdbb04f0

    • SHA1

      ce070d54e1d54ffd6c4d96b616f21b7466a062c7

    • SHA256

      2e82faaefa817254cf2a9d5149e3c36c04c3e09aca0bcc1a4e4fa894e137c1b1

    • SHA512

      5af2746296f191af559639b1c5463993e8c4fb25ef945677142a6a02486e6670669eb5a5bdd4c163f1bdd8bd35a7bb8998bbf32e4d0fe9d35db379cf80159a57

    • SSDEEP

      192:iQR8Lslmujbwybyo5HptlYwqJFD7U6r18ZPuNz:vNmcwcpt+D7Ua18uz

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      get_cookies.pyc

    • Size

      5KB

    • MD5

      ab0f8084441f8312bffc9d26193967ab

    • SHA1

      82b9c1c9cd1f5a38ac2b415a96c88ce99d27455a

    • SHA256

      6f67d11524ed42b8990be66aed829232514b364746fdceea30e0213204427be4

    • SHA512

      1722dfe7200b5f8fef0cfc4188953621630c7ee8672586490b9309a40512eb7f99fc56ffe52f6a0970809a38e3bdd8ce1862ba6803fe6d09bdfacda1b3fe1732

    • SSDEEP

      96:4Q0jzMv/ppR+xVBcnqhLchLPxrpTkBWeBDFZcj3KldyzoZ:sSZYXPhYhLP12zij3KnyA

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      misc.pyc

    • Size

      2KB

    • MD5

      5bff7de9304595611b9deeea55076bd3

    • SHA1

      ae5fd2f3fbac4b0587140ab41b30c4d3da286c75

    • SHA256

      39c73d32dce8fe34f56ca6fce56ae54ca99456c49fa04c949a45ca7d8e7355d9

    • SHA512

      4cb8277d8c02380679bcc19ec6cba2dae37b24058116e08cfec30f95a158c1c3b45590c79665ace9abbeda277f1f39be1e806fd90c8dae9a3c44cd69d1157679

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      passwords_grabber.pyc

    • Size

      4KB

    • MD5

      dbd5603fbc95768a5f3f45e6e1f7f109

    • SHA1

      b1fa1a73c1e9e0ee63cccf5a81210a8aa39bf40a

    • SHA256

      657361e158e5b5d76cf2b615d58c7c34de2d06d40f1c049c0757019fadab5e13

    • SHA512

      310aabd4b5ef007faaaac149ea5b182c20eb3db2ea576e1039fc86d8ed5bb7e63b437d10c2c876ab40a0f9f7782dbfc5804d02cf12a0d74d9b1fe5b1a9a035d5

    • SSDEEP

      96:4APDnTWeYwD86gWxS6679kZOyfkoXyWQUUEXtH0lLCvpW1mhs0:FzCUD/S6UyRkpoUEKlLz1m+0

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      protections.pyc

    • Size

      1KB

    • MD5

      355040df14f6bd722a2a0b7f1d6eb1e8

    • SHA1

      8e97bccd9f197cdf68c8c59c3977d777a93c01a6

    • SHA256

      1e31ae35f20601b1ae87becba9a28864b19efabb04bb4c9ebee53f49557f236e

    • SHA512

      d8a046d8abc510fcb57215be1936f73be8d0aa731a13cf1d347a3d99f5dc5f0d7faac208f8185be21434890d6f0688a9552fa882f4b797bff3b6fd2b9d809a61

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      source_prepared.pyc

    • Size

      110KB

    • MD5

      8ca757aa9bc2ccf4d91ccaba941f0f01

    • SHA1

      9f72237a2490779caa8d753b4ff5f0b5de7ef548

    • SHA256

      da9b8b3b4eca262a1f989fcc468c58fd2b72cd9d62f70532c768ed5e81f051b6

    • SHA512

      59a27a356b19eb1323d1dc7e20eb823dc0e343b598f1a45f69eafa8082fab218f3f6a4a3ac9ae4eca55dace915a53a422a83baa339dceb69da4f2c327550471e

    • SSDEEP

      1536:MyMNCxs8NFtxeBLD22WRfW+wv4DxfJtomboagV3W:R3vNFt8FDmNLom8bm

    Score
    3/10
    discovery
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks