blankgrabber | 4ad9510ac59ef46e7bdbb3d1d095282d2f8dd60d279778ff04af45dd03545ea8 | Triage

Submit
Reports

Overview

overview

Static

static

Method/Met...al.exe

windows10-1703-x64

Sharing

General

Target

Method-main.zip
Size

7.6MB
Sample

240316-j29nwsfa9y
MD5

41b35d20e80ffee75aa8646f3a24c3b7
SHA1

5bb7168734b91c0124085fada93919d0c686caad
SHA256

4ad9510ac59ef46e7bdbb3d1d095282d2f8dd60d279778ff04af45dd03545ea8
SHA512

2df8f8bd3aa13fa0bdb109c2c19c374ddeb59314c71b31c9a735fc81e6aa8df7c8c9d815777eb7c1af0eaf40591fd1827af57568f79f97028f0344602013f655
SSDEEP

98304:YiPDpEdZfB0LK/j2MYwmwcu5LZZU2HNVEyz/B6JXNdGTJ0ShStzMMrpwOdfqJjB4:vKCLmx5LZxfjz/KXv05iMMudBj5Hq

Score

10^/10

blankgrabber evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Method/MethodReveal.exe

Resource

win10-20240221-en

windows10-1703-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Method/MethodReveal.exe
- Size
  
  7.7MB
- MD5
  
  64e751caba6e717b800de63404acefed
- SHA1
  
  2bbf224f88a1cbe1be5b39c149b9e5d96e208134
- SHA256
  
  71774c499ea3adcba9a3c27a2a01a32908f07f6429cfdbde6db21ac476e3b8ee
- SHA512
  
  23485b31303857ae9f414b16121356865d01333871da709f0edd76ddd66c3ad275823b381325c748770dfe557d159bfa95bfc11f321ef3c4cd89477372e21cc1
- SSDEEP
  
  98304:+R3zHqdVfB2T0S27wukyuT/9vUIdD9C+z3zO917vOTh+ezDNhCSpXq4JvmJ1nmOn:+NQsTJbT/9bvLz3S1bA3zCSEpn97Yc
Score

10^/10

evasion upx
- Deletes Windows Defender Definitions
  Uses mpcmdrun utility to delete all AV definitions.
  evasion
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy