BlackCap-Grabber-main[.]zip | Triage

Resubmissions

05/01/2023, 22:20

230105-19a9qshb2x 8

Sharing

Copy URL Twitter E-mail

General

Target

BlackCap-Grabber-main.zip
Size

426KB
MD5

c2f55b1111d95d88e3459e9a090b12d4
SHA1

e89cddd34e09513ca2a20de7e28e709016663808
SHA256

e2a2e3d222550cad8965b27051523394c74e7e76e917eae8e17c33054fa051f3
SHA512

23637051c65e2fc5d2642eb801ef3338715a47fd7380c83e2451053b44e3acf2be9df501f35ee8c377ca8d0ce606eaaac52ffd4e82d1f7667b3ee428e8ee50f0
SSDEEP

12288:o1USXRRsE9RYo6O3ZGJJ4/fPLbpy+ZdcZpCYEaBOYmYevGTI:olb6O377ncZIUpTM

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/BlackCap-Grabber-main/upx/upx.exe	upx

Files

BlackCap-Grabber-main.zip
.zip
BlackCap-Grabber-main/README.md
BlackCap-Grabber-main/builder.py
BlackCap-Grabber-main/install.bat
BlackCap-Grabber-main/main.py
BlackCap-Grabber-main/obfuscation.py
BlackCap-Grabber-main/requirements.txt
BlackCap-Grabber-main/start.bat
BlackCap-Grabber-main/upx/upx.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 399KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE