Resubmissions

17-11-2024 15:07

241117-shseyasenb 10

General

  • Target

    RoShade.Installer.exe

  • Size

    5.8MB

  • MD5

    a009d18ad6b1ad27d3bfe34af2523c89

  • SHA1

    efe133b7259a700a1c838af989468ab65df1ca7b

  • SHA256

    be59ff484a7fa035caee41f9c6c70572250960f09768818b7cf9256013e2a007

  • SHA512

    9b33219a9b98eaa55a347cdd3a231e36c63d83653e2cda39cea36c3e4ffa1e4b45e317f4b15ceeb3c5a8933a996ace45fe3dc0524e1ab383a59df65126de5c38

  • SSDEEP

    98304:LimDSuXXOa7RHtJQi9UWvGfqD8WOxfmjaa15uXaDvdCK/blzFS03iw7FwXR6n3eX:LimDZtRHvUWvozWOxu9kXwvdbDlA03N4

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • RoShade.Installer.exe
    .exe windows:5 windows x64 arch:x64

    2ac23c52e7647c5bbea38e98bb68c652


    Code Sign

    Headers

    Imports

    Sections

  • ��kˊE2.pyc