General

  • Target

    Bootstrapper.exe

  • Size

    81.5MB

  • MD5

    d143ee1bc9c11d2f18b04ef798e3fb37

  • SHA1

    57edbd903298d87fc9ca7bb14128e0964b308371

  • SHA256

    ad0e69388e00b62b044cfe1db7d9bfd8bbcff1affc60a3fdfa0255451e8e34a9

  • SHA512

    4cfdf3a2fe2ffdbba760e53646e82153890906717e503ec17bac6bf228b0243671f79985f2611f7b982ab541a749265f64535f470011bac6fab00ac247973e10

  • SSDEEP

    1572864:2XUZQglX8DWa7v5Sk8IpG7V+VPhqO+6YE7Olg0iYgj+h58sMwLIX9vqucJXt:2XUZ5Rc/1SkB05awO+6Qe+53q9v6t

Score
10/10

Malware Config

Signatures

  • Detect Pysilon 1 IoCs
  • Pysilon family
  • Detects Pyinstaller 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Bootstrapper.exe
    .exe windows:6 windows x64 arch:x64

    Password: infected

    72c4e339b7af8ab1ed2eb3821c98713a


    Headers

    Imports

    Sections

  • discord_token_grabber.pyc
  • get_cookies.pyc
  • misc.pyc
  • passwords_grabber.pyc
  • source_prepared.pyc