General

  • Target

    DUPE.exe

  • Size

    7.0MB

  • MD5

    50098717bfa1d71614cf0e3bebe4006e

  • SHA1

    9aa4ef457a95980e402b16b26625e60ba7d1c34a

  • SHA256

    48f16d4372074d3b79431bc02cb2f5f784c631726851f719121ab34493380140

  • SHA512

    a33f3c5e88e9c1f8e828638cac9508e113667618f9452f28b1301b52009929844e762c7791f580f4a90f2369876d0e5456b66809087c1df7222b9be301c2e861

  • SSDEEP

    196608:nIQsGbT/9bvLz3S1bA329OqE8wQCn6Hx2o:qGbTlj3S1bO29OqYmH0o

Score
10/10

Malware Config

Signatures

  • A stealer written in Python and packaged with Pyinstaller 1 IoCs
  • Blankgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • DUPE.exe
    .exe windows:5 windows x64 arch:x64

    0b5552dccd9d0a834cea55c0c8fc05be


    Headers

    Imports

    Sections

  • loader-o.pyc