General

  • Target

    SZYMUSSP00FER.rar

  • Size

    6.0MB

  • MD5

    ce15238f628bc8f9d7ec5c4d341d6ae2

  • SHA1

    bdfa865bab3e7ae904bcd2c123a1529dc8f9173d

  • SHA256

    73829b03f13e50261c9e381c080223b7857be5ec60fe4c7a989056673e4bcc53

  • SHA512

    b8280880d8d846d696336cd4a0fb59bde3de3dba1df3834a0efe17607f508733e7ad37cfa107c4888334b8147fcaad137af84998924b02093ba18641c786c1a4

  • SSDEEP

    98304:Zx1s+kYdlIB2zZQHFcs8qqnGhd3CwQTK7XV8PXot8KiOGg74xV37ZY3u71:qzSmdlos9FQTalorYMxo3uZ

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • SZYMUSSP00FER.rar
    .rar
  • SZYMUS SP00FER.exe
    .exe windows:6 windows x64 arch:x64

    72c4e339b7af8ab1ed2eb3821c98713a


    Code Sign

    Headers

    Imports

    Sections

  • ׺C���K.pyc