Analysis

  • max time kernel
    459s
  • max time network
    1178s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240426-en
  • resource tags

    arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    31-05-2024 17:38

General

  • Target

    Grabbers-Deobfuscator-main/utils/bin/pycdas

  • Size

    2.0MB

  • MD5

    d1be2de3bdbb4fdb92e082e08aca4cbe

  • SHA1

    aebe16ddc04bd813a9ab207fb4c03a214cb65bff

  • SHA256

    24d64b99f88ce539ababf41503c33793110eca52d90bb25d5d9f8382fb96f040

  • SHA512

    708266641de9aea2f0f851c1ad94bda18502db6d3eaa2a0831a7a0ad8d9577e1401d16939a7fb1b326b49a32e42d2ecb9722ca797bfe73681a133aff47571d21

  • SSDEEP

    24576:AI3vfom++IihitiE1mPslvOTJPtCcTyxoVU1g+pxtXL:AI3vgwi4E1mUlvOTHCc4oa1j

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Grabbers-Deobfuscator-main\utils\bin\pycdas
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3628
    • C:\Users\Admin\AppData\Local\Temp\Grabbers-Deobfuscator-main\utils\bin\pycdas.exe
      C:\Users\Admin\AppData\Local\Temp\Grabbers-Deobfuscator-main\utils\bin\pycdas
      2⤵
        PID:3212

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads