Overview

overview

8

Static

static

8

grabber.rar

windows7-x64

3

grabber.rar

windows10-2004-x64

3

Blank-Grab...er.bat

windows7-x64

1

Blank-Grab...er.bat

windows10-2004-x64

1

Blank-Grab...OBF.py

windows7-x64

3

Blank-Grab...OBF.py

windows10-2004-x64

3

Blank-Grab...10.pyc

windows7-x64

3

Blank-Grab...10.pyc

windows10-2004-x64

3

Blank-Grab...10.pyc

windows7-x64

3

Blank-Grab...10.pyc

windows10-2004-x64

3

Blank-Grab...10.pyc

windows7-x64

3

Blank-Grab...10.pyc

windows10-2004-x64

3

Blank-Grab...s/cert

windows7-x64

1

Blank-Grab...s/cert

windows10-2004-x64

1

Blank-Grab...g.json

windows7-x64

3

Blank-Grab...g.json

windows10-2004-x64

3

Blank-Grab...der.py

windows7-x64

3

Blank-Grab...der.py

windows10-2004-x64

3

Blank-Grab...ess.py

windows7-x64

3

Blank-Grab...ess.py

windows10-2004-x64

3

Blank-Grab...ess.py

windows7-x64

3

Blank-Grab...ess.py

windows10-2004-x64

3

Blank-Grab...ar.exe

windows7-x64

3

Blank-Grab...ar.exe

windows10-2004-x64

3

Blank-Grab...eg.key

windows7-x64

3

Blank-Grab...eg.key

windows10-2004-x64

3

Blank-Grab...ts.txt

windows7-x64

1

Blank-Grab...ts.txt

windows10-2004-x64

1

Blank-Grab...un.bat

windows7-x64

1

Blank-Grab...un.bat

windows10-2004-x64

1

Blank-Grab...on.txt

windows7-x64

1

Blank-Grab...on.txt

windows10-2004-x64

1

Resubmissions

13/07/2024, 23:11 UTC

240713-26p46asgld 8

13/07/2024, 20:33 UTC

240713-zb9h7swdpk 8

11/07/2024, 21:44 UTC

240711-1lnj6axfpd 8

11/07/2024, 21:32 UTC

240711-1d16aaxcrf 8

11/07/2024, 21:29 UTC

240711-1b5qpaxcke 8

11/07/2024, 21:25 UTC

240711-z9kmqsvcnm 8

11/07/2024, 21:22 UTC

240711-z7xvaavbrp 8

11/07/2024, 21:20 UTC

240711-z6q1cavbmj 8

11/07/2024, 21:16 UTC

240711-z4v7aawhrd 8

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 21:44 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Blank-Grabber-main/Blank Grabber/Components/__pycache__/BlankOBF.cpython-310.pyc

  • Size

    6KB

  • MD5

    4b625b6e708035541703fd6b95da4d2c

  • SHA1

    31c61dcd069ad077d1c2e5756e359bc06cfe5e3d

  • SHA256

    9d219dba0c1cb641e5f32dc7731bc73a793a1c0b25f8a548c66e4e20e5c1c70b

  • SHA512

    6dfbe25ce40d75b5d5ac8267623c6d9579f13cd06e871e3976b8e2d5f8552d6b6aefb38483de337f08b32c669be76e68473a08de05b98a9e3b09fa2d8b2a57a1

  • SSDEEP

    192:Kf4wJ/r5Aq+681dKHsYVmqemYPNbHJNU1kX0X2yN:RSr5Aqn81dKMY1+1bHJNU1JXXN

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 9 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Blank-Grabber-main\Blank Grabber\Components\__pycache__\BlankOBF.cpython-310.pyc"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2972
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\Admin\AppData\Local\Temp\Blank-Grabber-main\Blank Grabber\Components\__pycache__\BlankOBF.cpython-310.pyc
      2⤵
      • Modifies registry class
      • Suspicious use of WriteProcessMemory
      PID:2260
      • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
        "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Blank-Grabber-main\Blank Grabber\Components\__pycache__\BlankOBF.cpython-310.pyc"
        3⤵
        • Suspicious behavior: GetForegroundWindowSpam
        • Suspicious use of SetWindowsHookEx
        PID:2768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2a27ec5dfd117690033131367c2b588c

    SHA1

    06273c8a908504ea4946ab8bb6a67f1ed28b729c

    SHA256

    120b58d2ef22a5b9892b5a483e453e3e69fdbd0d2bcfc1f39f32d99dfe575f54

    SHA512

    4bf75de7644ecc82f3145aa8307e09165f72f92abb99a3b7fbe835be677f988c3d17c288978b002644dd5e31a08eac29457a18e5a09e345c41789bb22d788db3

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.