Resubmissions

10-12-2024 10:09

241210-l6rd8asqfv 10

10-12-2024 09:17

241210-k9df4askfx 10

General

  • Target

    nitro promo gen.exe

  • Size

    7.5MB

  • MD5

    0ac63b6b7095d264a4abf2c1e6e53428

  • SHA1

    0aa150764147c6e03eb040b60cd170bac9bae5e8

  • SHA256

    c44661cb16943639da31332d39672902226c9f80851d5e7a3fa67aa3c6e35c9d

  • SHA512

    3a3968e5b23d2a3ec5210252b6516a741a13437a85296c82bb6c0b8214c5ba158b576a03dd330178aa9134939241e80466c360c0a390ce522d818f9530469852

  • SSDEEP

    196608:P+QCwVWurErvI9pWjgN3ZdahF0pbH1AY7WtQsNo/03vC1z:7VWurEUWjqeWx06rYYz

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family

Files

  • nitro promo gen.exe
    .exe windows:6 windows x64 arch:x64

    72c4e339b7af8ab1ed2eb3821c98713a


    Code Sign

    Headers

    Imports

    Sections

  • ����Zӵ.pyc