Overview

overview

7

Static

static

7

xengrabber...ge.jpg

windows7-x64

3

xengrabber...ge.jpg

windows10-2004-x64

3

xengrabber...er.bat

windows7-x64

1

xengrabber...er.bat

windows10-2004-x64

1

xengrabber...OBF.py

windows7-x64

3

xengrabber...OBF.py

windows10-2004-x64

3

xengrabber...ess.py

windows7-x64

3

xengrabber...ess.py

windows10-2004-x64

3

xengrabber...ess.py

windows7-x64

3

xengrabber...ess.py

windows10-2004-x64

3

xengrabber...ar.exe

windows7-x64

3

xengrabber...ar.exe

windows10-2004-x64

3

xengrabber...un.bat

windows7-x64

1

xengrabber...un.bat

windows10-2004-x64

1

xengrabber...ief.py

ubuntu-18.04-amd64

1

xengrabber...ief.py

debian-9-armhf

1

xengrabber...ief.py

debian-9-mips

1

xengrabber...ief.py

debian-9-mipsel

1

xengrabber...tub.py

windows7-x64

3

xengrabber...tub.py

windows10-2004-x64

3

xengrabber...px.exe

windows7-x64

7

xengrabber...px.exe

windows10-2004-x64

7

xengrabber...tes.py

windows7-x64

3

xengrabber...tes.py

windows10-2004-x64

3

xengrabberV2/gui.py

windows7-x64

3

xengrabberV2/gui.py

windows10-2004-x64

3

Resubmissions

08/06/2023, 12:47

230608-p1e1sagb4x 7

07/06/2023, 20:03

230607-ysrt2sfh7w 7

07/06/2023, 18:07

230607-wqklvaea86 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    xengrabberV2.zip

  • Size

    971KB

  • MD5

    835bc73ba23f5aed9f0d02a413e101aa

  • SHA1

    8d9ed7466d2c9aff2c3458a8c21698dedb2be0bf

  • SHA256

    57c755164c6a339e55073eda5475cbfdb5bb3b3244669dd746e720f3a0ab4bdf

  • SHA512

    ea3cebaf20af3d74922c3302412fd08b01fe9b23c6c1b7513b0f6c9918d439cecc84ab89403a8ce2c913d0685903cf59c32e5a5396b3911fb3151b02b60e2433

  • SSDEEP

    24576:TtOyfKp4Nh5ls0G2vGnpvF3XZ36ALQ9UlxAPsXSUkA:xOrSRls0PCvF3XZ/09Ulx4sSUV

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • xengrabberV2.zip
    .zip
  • xengrabberV2/.github/workflows/image.png
    .jpg
  • xengrabberV2/Builder.bat
  • xengrabberV2/Components/Camera
  • xengrabberV2/Components/XenOBF.py
  • xengrabberV2/Components/cert
  • xengrabberV2/Components/config.json
  • xengrabberV2/Components/postprocess.py
  • xengrabberV2/Components/process.py
  • xengrabberV2/Components/rar.exe
    .exe windows x64

    9a33888e10929c185d02249d2b55c15a


    Code Sign

    Headers

    Imports

    Sections

  • xengrabberV2/Components/rarreg.key
  • xengrabberV2/Components/requirements.txt
  • xengrabberV2/Components/run.bat
    .bat .vbs
  • xengrabberV2/Components/sigthief.py
    .py .sh linux
  • xengrabberV2/Components/stub.py
  • xengrabberV2/Components/upx.exe
    .exe windows x64


    Headers

    Sections

  • xengrabberV2/Components/version.txt
  • xengrabberV2/Extras/hash
  • xengrabberV2/Extras/icon.ico
  • xengrabberV2/Extras/unblock_sites.py
  • xengrabberV2/READme.txt
  • xengrabberV2/gui.py