Overview

overview

10

Static

static

10

AK-grabber-main.zip

windows7-x64

1

AK-grabber-main.zip

windows10-2004-x64

1

AK-grabber...er.bat

windows7-x64

1

AK-grabber...er.bat

windows10-2004-x64

1

AK-grabber...OBF.py

windows7-x64

3

AK-grabber...OBF.py

windows10-2004-x64

3

AK-grabber...s/cert

windows7-x64

1

AK-grabber...s/cert

windows10-2004-x64

1

AK-grabber...g.json

windows7-x64

3

AK-grabber...g.json

windows10-2004-x64

3

AK-grabber...der.py

windows7-x64

3

AK-grabber...der.py

windows10-2004-x64

3

AK-grabber...ess.py

windows7-x64

3

AK-grabber...ess.py

windows10-2004-x64

3

AK-grabber...ess.py

windows7-x64

3

AK-grabber...ess.py

windows10-2004-x64

3

AK-grabber...ar.exe

windows7-x64

3

AK-grabber...ar.exe

windows10-2004-x64

3

AK-grabber...eg.key

windows7-x64

3

AK-grabber...eg.key

windows10-2004-x64

3

AK-grabber...ts.txt

windows7-x64

1

AK-grabber...ts.txt

windows10-2004-x64

1

AK-grabber...un.bat

windows7-x64

1

AK-grabber...un.bat

windows10-2004-x64

1

AK-grabber...up.exe

windows7-x64

7

AK-grabber...up.exe

windows10-2004-x64

8

��d�*.pyc

windows7-x64

��d�*.pyc

windows10-2004-x64

AK-grabber...ief.py

ubuntu-18.04-amd64

1

AK-grabber...ief.py

debian-9-armhf

1

AK-grabber...ief.py

debian-9-mips

1

AK-grabber...ief.py

debian-9-mipsel

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30-01-2025 01:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AK-grabber-main/A5 Grabber/Components/setup.exe

  • Size

    7.4MB

  • MD5

    5151030ea432527a9b66e6dae0b87e14

  • SHA1

    1423cdab433ed75bfd49b76d2039dd93c90f2621

  • SHA256

    12c2ae9e20fe738c0bce880495a8739e0937446c26571e49d653fd24c69b6163

  • SHA512

    2702f06de201f2acfca05143715775ec8c9c7592bb8ed84826e56c9b29c8db29efdc94e03b8a929e945789c728b8beb17b9ade7d709f4402356d9ffca97dd086

  • SSDEEP

    196608:oj0cD/z3DLjv+bhqNVoBKUh8mz4Iv9PaHt4Ihy:hi/z3XL+9qz8/b4IYGIhy

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\AK-grabber-main\A5 Grabber\Components\setup.exe
    "C:\Users\Admin\AppData\Local\Temp\AK-grabber-main\A5 Grabber\Components\setup.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Users\Admin\AppData\Local\Temp\AK-grabber-main\A5 Grabber\Components\setup.exe
      "C:\Users\Admin\AppData\Local\Temp\AK-grabber-main\A5 Grabber\Components\setup.exe"
      2⤵
      • Loads dropped DLL
      PID:1868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI25122\python311.dll
    Filesize

    1.6MB

    MD5

    0b66c50e563d74188a1e96d6617261e8

    SHA1

    cfd778b3794b4938e584078cbfac0747a8916d9e

    SHA256

    02c665f77db6b255fc62f978aedbe2092b7ef1926836290da68fd838dbf2a9f2

    SHA512

    37d710cb5c0ceb5957d11b61684cfbc65951c1d40ab560f3f3cb8feca42f9d43bd981a0ff44c3cb7562779264f18116723457e79e0e23852d7638b1a954a258f

    Download Submit

  • memory/1868-23-0x000007FEF57E0000-0x000007FEF5DC9000-memory.dmp

    Filesize

    5.9MB

    Download