General

  • Target

    Grabbers-Deobfuscator-main.zip

  • Size

    13.3MB

  • Sample

    240531-v5yatafd21

  • MD5

    6f94633479de9682983cb90551915054

  • SHA1

    2db29d4a3bcdd9adfca22cd9faaf1e8e5437a2fc

  • SHA256

    acaf7a1d32d6bd9e1f34ff6e707710810cc17b0f25c9ec7c329cfdc8ddfc1ed1

  • SHA512

    3db840c386947cdb9e9e1b7444a436faed29f365ef2c4ce94b5bcc687e02b887887509e9b465da1d5158da4879b9d13797605da0c3da8bd185adcd72393a91ab

  • SSDEEP

    393216:CyD5IgIu+U0gRhK4adCsAvKmyRPYxaFB64kSTmVVg1V/g6AE:CS5IlXgR4GoYxa7MVe1K6AE

Malware Config

Targets

    • Target

      Grabbers-Deobfuscator-main.zip

    • Size

      13.3MB

    • MD5

      6f94633479de9682983cb90551915054

    • SHA1

      2db29d4a3bcdd9adfca22cd9faaf1e8e5437a2fc

    • SHA256

      acaf7a1d32d6bd9e1f34ff6e707710810cc17b0f25c9ec7c329cfdc8ddfc1ed1

    • SHA512

      3db840c386947cdb9e9e1b7444a436faed29f365ef2c4ce94b5bcc687e02b887887509e9b465da1d5158da4879b9d13797605da0c3da8bd185adcd72393a91ab

    • SSDEEP

      393216:CyD5IgIu+U0gRhK4adCsAvKmyRPYxaFB64kSTmVVg1V/g6AE:CS5IlXgR4GoYxa7MVe1K6AE

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/deobf.py

    • Size

      6KB

    • MD5

      6b4b50783ef2c9d21751cd38bd9b3bf0

    • SHA1

      e400e78d11663a368d9852ccf4f1fcfda3296f17

    • SHA256

      46614ff3690379626ab3109954d753d98fd750e4fd1d785172c1a82276ad5f85

    • SHA512

      8d00d3a31534a30b588ca932b89b24d64ec8e6c5d853f6f3dfc3dc39634c507b24411cd870aaf96d2b403f12f72508af587b38560f5745f1f913ca3aefd264e3

    • SSDEEP

      96:MbzxTlCdC+JU8H7s6pd9rng/mpVt/NSMA8RixUb8RisEP5fAoKqRqhp9:MhZ8bvBgmpHTrBsRqRip9

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/ben.py

    • Size

      647B

    • MD5

      04915dc08e2aa81160cf532b7d3f940b

    • SHA1

      95c0f9a41b48028e8c1f6a10de6805b6829cadcc

    • SHA256

      c28e4ff38d046e64af3d89d8db3eba4823b09b8223208929afae31d8c68dd6ae

    • SHA512

      94ec68fe8b2365443aedcea869d6f059b48b53acd919eca58d1fe5933914112444eb2571adf3bfb1d3f5899d341ea5a7b60531b1c94fc6eef21ac4712e1a1e96

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/blank.py

    • Size

      2KB

    • MD5

      a9eec0c273d5c9add43b72745c3bc715

    • SHA1

      0345bf98fdd5282491936d7bcb77e8de890d373d

    • SHA256

      e831ea73ec311352b6ef5a0de295771b2dd84147a450d64f40dcf620fa9386e8

    • SHA512

      3ea5ab3c836eea288e501c09923650ac22b9f8750d674eb6957b52472181f393c5a74eb6ba33fb90aae2f0272fd6a346d68f6904a1c86208605624b2383d91eb

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/empyrean.py

    • Size

      969B

    • MD5

      68c486c90545f3d750a6600fca3a9998

    • SHA1

      a09f37c175a5c5a80f0ca7a802d073050666a887

    • SHA256

      ea28f330301a9cbf0742c6aa3abe503d7cf773a073fa8d693b0a390754f0e1b8

    • SHA512

      14dbc5067f7b84a043accba6e152a7ae62cee11e9945687522b008985b464f980619c79f7d184ee317e23bc7ab2ab36748f1abe6d9bf698d9a11d860a2ef1e2c

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/luna.py

    • Size

      599B

    • MD5

      dabcbb5288a4cd2e6bd4502149cc47ca

    • SHA1

      b904848c1566d9e129f6eda7bd5860e52e988845

    • SHA256

      99ebd4549a057dc88070579456d1815d7c954cc4a200ed6fd43bff542118981f

    • SHA512

      404528b996d0452738115155332746e6d60860d70e1a2c6262ae4459941c14dd809dc927c30cf520dd5f3c35d3aaad3c058dd6433a4a6ee8e99657e01a80608d

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/notobf.py

    • Size

      784B

    • MD5

      2677e35326ef5d285a346c5785b49b85

    • SHA1

      2df409f57f9768f03fdc1f86c23f3466822836ba

    • SHA256

      a054a1a2c2329dfc8078ccae527dbc259396765754b0a09e88cdaff60cb89fba

    • SHA512

      27c2852936c7f1ad81c51db097584effd68a910ecebda5d2e51a2dc947d5c5b650955aaeecc2d35d48083b478de6b3394f830b98e408077b997f06ed9bb0f647

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/methods/other.py

    • Size

      3KB

    • MD5

      3c81db58e15d886a0ac087048fd4eafb

    • SHA1

      22194979825e8e97c4daa2f561ca66dfad75d9df

    • SHA256

      3c0f0714975cb012aed71ae396f038f2fa2f4a289825fe5e3c009f7693f01115

    • SHA512

      949b5720fef68dfc90f7cf952252e9f70fe6beab2e0087cbcb41c001c4d09c1a369a157ce8f0ea63f6eff3855b7b325b40e4ca125cc5595df8ef84705842a972

    Score
    3/10
    • Target

      Grabbers-Deobfuscator-main/requirements.txt

    • Size

      77B

    • MD5

      4e0914ea3584fea2aa56cd7af4b47e54

    • SHA1

      371dc0478fe7009fa4eb51519e4ad33545dea43f

    • SHA256

      77a588a4a077a11bdc2437788fe890124e3a44651b178744bfcb36b9318ee956

    • SHA512

      30f4fe664c21762035627d65a6492fe817adb6b684b9a599df0dd07205ad95bde2ac9736a360540f339455221268e5aa82977c212b42825b93f34cb2982637d0

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/tutorial.gif

    • Size

      5.4MB

    • MD5

      5f0d866bbe33c89e20c65c8550cf1e0a

    • SHA1

      1225369d978e079633e32d14109312faef165677

    • SHA256

      a5c5cba7e7bc708e6666f702399c1da349730cf1057fae424ae547eee8468e16

    • SHA512

      a077957e18a3325907e609c21b5321f412b532069724915061534d50d6faaaea0c3aada86ea07ada9f06bfe404968d84d0fd897962e2b6b0d5b5341d212e58fb

    • SSDEEP

      49152:qBtH37m9CpZ9cjfjD+YkuVUEiRqfR8lrIumNnrJW6i3/FZAETeHs2MOC23JqyOB:YtLm9MujfOAecPHT/956

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/fernflower.jar

    • Size

      690KB

    • MD5

      be01dbc47a455dddfc724d5efe13b490

    • SHA1

      0d96a3b0cb32a0e70cc563a2dcdcea5ef61d45b5

    • SHA256

      74b609647d74e4ce04e9beef230a7460e74de03bf41703f961bbe704d4938b8f

    • SHA512

      4ee6e1b935bc428e16103485da5440ae5b968334f023c7872247d52f1d0c000f8f49bc9101e955999c0338c88d34392f14eff2143c167675f7f5888a0be91094

    • SSDEEP

      12288:lSBknFucLVNrGJASNYa5k3qIhOhsioN46D2xFGDwHyhfsYFY5D/:lUcLVNEA0N5kaVhBjGDdhkYUD

    Score
    7/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/pycdas

    • Size

      2.0MB

    • MD5

      d1be2de3bdbb4fdb92e082e08aca4cbe

    • SHA1

      aebe16ddc04bd813a9ab207fb4c03a214cb65bff

    • SHA256

      24d64b99f88ce539ababf41503c33793110eca52d90bb25d5d9f8382fb96f040

    • SHA512

      708266641de9aea2f0f851c1ad94bda18502db6d3eaa2a0831a7a0ad8d9577e1401d16939a7fb1b326b49a32e42d2ecb9722ca797bfe73681a133aff47571d21

    • SSDEEP

      24576:AI3vfom++IihitiE1mPslvOTJPtCcTyxoVU1g+pxtXL:AI3vgwi4E1mUlvOTHCc4oa1j

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/pycdas.exe

    • Size

      124KB

    • MD5

      c106613cf4fc594260ced59577936bfa

    • SHA1

      8a16fdacd947e6a8fedebde1c1eaf2ff899c6f37

    • SHA256

      52370a2d59198239421954e1cb46284218d3c8ba70a1c161d2b5ab1cc7ed4d96

    • SHA512

      55d24e2babed9fc81c53ca452d720911628001a9da24b156cc2560b0b8c3461058fd90da5ca0bbfd36c6fb4f985887535aad18a4bf7d9b199b2afdb32ddd4247

    • SSDEEP

      1536:PAXQ0AJO9eYJpPPuPZgkP8MqzjWdwsa8XKIilFRvrfS1l+YlDlT:41B9eYJpHuj8Mqz6dZv6IilFhYl+YD

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/pycdc

    • Size

      2.3MB

    • MD5

      dca8a4f7d9a8a1571ff7878e4b7b83fa

    • SHA1

      50d05e2cdaa0acc8cb8639f893e7132c66840d0d

    • SHA256

      f7dbc7f92b2660608e3f75301215148760c8d85669c3b1775a842a32cf35d9f4

    • SHA512

      04cb648807051d336d1c9d31d6cb07d7c9e97ebf6cde5d282db9e4f6ce42c1e78f624e68525159995e6c173f93d80822bd2eef08d383520cb882083ee46f719f

    • SSDEEP

      24576:0L6jwuRE/ASaaVzD9dfAukg1YkH0TAK+w5VT+3MpvMgiKLGvVI:0L6kKOxD9dfNkg1YNTAKx5Va8pvMgc

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/pycdc.exe

    • Size

      248KB

    • MD5

      0ad8ae7adb1223e4c02b977cfd024bb1

    • SHA1

      0794e82385e836dab7e16d0f2ca28aafeb489bf6

    • SHA256

      fc5a1007f29b7304e91fce22c036c3dc39134ed3b89ba76e3aaa02bc45beb76c

    • SHA512

      93c3af8c13459e67e1946dff346920916ff200566706b36eb41332125fc0a9454c4175f483683a4b0e99520c294eea6b061eb48e9d31c0870ec65dbeab9b5f07

    • SSDEEP

      6144:qGS8eDxDYUBqfN1l8nRRhJXbnPD+sHlc:qDfDtBqfR8RtbJH

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/upx

    • Size

      548KB

    • MD5

      59e0bfa3352db08097a9f62c51934192

    • SHA1

      be017e943ab0bbf4c4e6b655b8648ff124550d44

    • SHA256

      1dbdeb502fc80807af72560b0c361fd073c714fb68d429dfedf83597d36db2f3

    • SHA512

      23c0303a9dd12f0066c13f122760d7495d783690207d14c288f3babbc5670d8d6c3bf1149cd07694e15eb757152ecf9ca152b193832e6427dabb0de65fd76d41

    • SSDEEP

      12288:bkuvAY7aDFiQDq7+EKyxGOxadM/RxyMAYhMOPNMQNYgmiJDlxupZqS/5m:dNa5O7WjkxyMrMO3YgmG0pY/

    Score
    1/10
    • Target

      Grabbers-Deobfuscator-main/utils/bin/upx.exe

    • Size

      551KB

    • MD5

      90391271aa0ca4d340c6c78d5426cea3

    • SHA1

      c6bc571809512e5a9afd909790ec37fb6fc7bc59

    • SHA256

      902e597a5eb89f345901280eb396394146b3937d4c84b880e8ee1300c901ec9b

    • SHA512

      b6599cd7de6e4eb18b724670bd26f1566a52999fe2171224f330512ee8bebcd4d4e74845293f32a22ad998957655a2982b8bae183a8171e77789afce678214ae

    • SSDEEP

      12288:F6sMe2eOno9jftrZ4X52zGt1wnp5/euBAKPLdmDoDnavsu+Xoi5ZW6q:Msie6STtFC8G1wfZBAaLdVavsfXoa

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      Grabbers-Deobfuscator-main/utils/config.py

    • Size

      835B

    • MD5

      96f8034a7e38860d79c01d7933ee1a87

    • SHA1

      bcaf6f3a8ad007fb11d579e02ffec38e80e364b9

    • SHA256

      ca78c3213eaa61d1a1773428b47ebc753831a61c946356d3ce3b0f3ab02721bd

    • SHA512

      f766869cc75ac6a05c22ec601018af51f93b07b1e82f99e67c7623fe648ad900c539f7204d50a0a815c482657d052d08bb9235a73d71b72a46a39ed0cc2450f0

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

upxblankgrabber
Score
10/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
3/10

behavioral4

Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

Score
3/10

behavioral8

Score
3/10

behavioral9

Score
3/10

behavioral10

Score
3/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

Score
3/10

behavioral14

Score
3/10

behavioral15

Score
3/10

behavioral16

Score
3/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

discovery
Score
7/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

upx
Score
7/10

behavioral31

upx
Score
7/10

behavioral32

Score
3/10