Resubmissions

28-11-2024 19:25

241128-x5b4paxmgw 10

28-11-2024 19:25

241128-x41qnasqfp 10

General

  • Target

    gen steam.roblox.rar

  • Size

    7.3MB

  • MD5

    fe7bef1e96a249efe61c805f99f5879b

  • SHA1

    5794822917607cb40a05d5cad09fcfe84333735d

  • SHA256

    f26b7a4ccbf395693ad089998eb038cb01f22a6b993f670f9bddeea676758440

  • SHA512

    d6cb2f8f51fe9128d879b6ab06bb0fc0e505618adbf3678bcb849bac7a41f0c884b22046cc407a704894c6d5014b18790afbcb85e6a85d6b867de6f696ddd310

  • SSDEEP

    196608:gVOdDM5sCiHyQJhgGOjf5fOXHlOHHSXmiRS6lwLJoQoG4wFq:gEdDMsCRQJhgDjBs2HeS6ynonwQ

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • gen steam.roblox.rar
    .rar
  • gen steam.roblox/License-.rtf
    .rtf
  • gen steam.roblox/gen-(1).exe
    .exe windows:6 windows x64 arch:x64

    72c4e339b7af8ab1ed2eb3821c98713a


    Code Sign

    Headers

    Imports

    Sections

  • ����O��.pyc
  • gen steam.roblox/secret.txt