Overview

overview

8

Static

static

8

Blank-Grab...er.bat

windows11-21h2-x64

8

Blank-Grab...OBF.py

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...der.py

windows11-21h2-x64

3

Blank-Grab...ess.py

windows11-21h2-x64

3

Blank-Grab...ess.py

windows11-21h2-x64

3

Blank-Grab...ar.exe

windows11-21h2-x64

3

Blank-Grab...un.bat

windows11-21h2-x64

1

Blank-Grab...ief.py

windows11-21h2-x64

3

Blank-Grab...tub.py

windows11-21h2-x64

3

Blank-Grab...px.exe

windows11-21h2-x64

7

Blank-Grab...tes.py

windows11-21h2-x64

3

Blank-Grab...gui.py

windows11-21h2-x64

3

Blank-Grab...er.bat

windows11-21h2-x64

1

Blank-Grab...OBF.py

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...10.pyc

windows11-21h2-x64

3

Blank-Grab...der.py

windows11-21h2-x64

3

Blank-Grab...ess.py

windows11-21h2-x64

3

Blank-Grab...ess.py

windows11-21h2-x64

3

Blank-Grab...ar.exe

windows11-21h2-x64

3

Blank-Grab...un.bat

windows11-21h2-x64

1

Blank-Grab...ief.py

windows11-21h2-x64

3

Blank-Grab...tub.py

windows11-21h2-x64

3

Blank-Grab...px.exe

windows11-21h2-x64

7

Blank-Grab...tes.py

windows11-21h2-x64

3

Blank-Grab...gui.py

windows11-21h2-x64

3

Resubmissions

13/07/2024, 23:11

240713-26p46asgld 8

13/07/2024, 20:33

240713-zb9h7swdpk 8

11/07/2024, 21:44

240711-1lnj6axfpd 8

11/07/2024, 21:32

240711-1d16aaxcrf 8

11/07/2024, 21:29

240711-1b5qpaxcke 8

11/07/2024, 21:25

240711-z9kmqsvcnm 8

11/07/2024, 21:22

240711-z7xvaavbrp 8

11/07/2024, 21:20

240711-z6q1cavbmj 8

11/07/2024, 21:16

240711-z4v7aawhrd 8

Analysis

  • max time kernel
    426s
  • max time network
    441s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240709-en
  • resource tags

    arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    13/07/2024, 23:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Blank-Grabber-main/grabb/Components/postprocess.py

  • Size

    2KB

  • MD5

    bbed9f3d87c4927b2b2bc16a6ec4da51

  • SHA1

    c3bceb8a6fb5207abc75039e5a66afbf8324cd8f

  • SHA256

    72eefc2defd861c48721f235717a0f8de430ea8f2bc290b429cfbdc906ba539c

  • SHA512

    352cd87d379e0a338d44f3933b6b135a36ebe83607157dfe28330ec2c03c6b2bcbbb2d43b1a06487675eea662c76084b3f9777f5b8d0c9132d50869318fc3c78

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Blank-Grabber-main\grabb\Components\postprocess.py
    1⤵
    • Modifies registry class
    PID:1704
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads