Overview

overview

8

Static

static

8

Blank-Grab...64.exe

windows7-x64

4

Blank-Grab...64.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Blank-Grabber-main.zip

  • Size

    24.9MB

  • MD5

    703c902a5f685e9ecb1e852be9e9815c

  • SHA1

    b11341f5e78c8b6eb1d66a4f76d38306d873ca09

  • SHA256

    1fd4eea59563239d6c8a611850ed2574aa4aabd8cade7222e3bb37a6a4becb0a

  • SHA512

    5b1601f4e3a0cf6d7dd2fa9318afa63aca5364c380b2ef678f15fd7a9180183a5f7e85e47bae5a11b85103a81c82043eddca4e1f70056913ea9195d12cd7e31d

  • SSDEEP

    393216:l24c+bVK51gPm3ye3WcWyNeeXE7nqBNNfqLbNU5uyaIrsROTYpwmU7wiKIkYS+:l2IW1sem8NeeXmmNhuOUmrON92ZK8S+

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 1 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Blank-Grabber-main.zip
    .zip

    Password: kutaskozla

  • Blank-Grabber-main/.github/workflows/image.png
    .png

    Password: kutaskozla

  • Blank-Grabber-main/.github/workflows/update-hash.yml
  • Blank-Grabber-main/Blank Grabber/Builder.bat
  • Blank-Grabber-main/Blank Grabber/Components/BlankOBF.py
  • Blank-Grabber-main/Blank Grabber/Components/cert
  • Blank-Grabber-main/Blank Grabber/Components/config.json
  • Blank-Grabber-main/Blank Grabber/Components/loader.py
  • Blank-Grabber-main/Blank Grabber/Components/postprocess.py
  • Blank-Grabber-main/Blank Grabber/Components/process.py
  • Blank-Grabber-main/Blank Grabber/Components/rar.exe
    .exe windows:5 windows x64 arch:x64

    Password: kutaskozla

    9a33888e10929c185d02249d2b55c15a


    Code Sign

    Headers

    Imports

    Sections

  • Blank-Grabber-main/Blank Grabber/Components/rarreg.key
  • Blank-Grabber-main/Blank Grabber/Components/requirements.txt
  • Blank-Grabber-main/Blank Grabber/Components/run.bat
    .bat .vbs
  • Blank-Grabber-main/Blank Grabber/Components/sigthief.py
    .py .sh linux
  • Blank-Grabber-main/Blank Grabber/Components/stub.py
  • Blank-Grabber-main/Blank Grabber/Components/upx.exe
    .exe windows:4 windows x64 arch:x64

    Password: kutaskozla


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • Blank-Grabber-main/Blank Grabber/Components/version.txt
  • Blank-Grabber-main/Blank Grabber/Extras/hash
  • Blank-Grabber-main/Blank Grabber/Extras/icon.ico
  • Blank-Grabber-main/Blank Grabber/Extras/unblock_sites.py
  • Blank-Grabber-main/Blank Grabber/READme.txt
  • Blank-Grabber-main/Blank Grabber/cwel.txt
  • Blank-Grabber-main/Blank Grabber/gui.py
  • Blank-Grabber-main/Blank Grabber/python-3.11.0-amd64.exe
    .exe windows:6 windows x86 arch:x86

    Password: kutaskozla

    f57d7a40ebfca87e6f8082251d937ed8


    Code Sign

    Headers

    Imports

    Sections

  • Blank-Grabber-main/LICENSE
  • Blank-Grabber-main/README.md
  • Blank-Grabber-main/changelog.md