BlobRunner: debug shellcode extracted during malware analysis
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | ea17b067-fd16-4cb1-ab03-384bcd5d54cf |
| Fingerprint | ae78d5062dff04e2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 14, 2019, 10:28 p.m. |
| Added to db | Jan. 18, 2023, 10:27 p.m. |
| Last updated | Nov. 18, 2024, 8:35 a.m. |
| Headline | BlobRunner v0.0.5 releases: debug shellcode extracted during malware analysis |
| Title | BlobRunner: debug shellcode extracted during malware analysis |
| Detected Hints/Tags/Attributes | 14/1/10 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://securityonline.info/blobrunner-debug-shellcode-malware-analysis/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 23 | securityonline.info |
|
| Details | Domain | 4129 | github.com |
|
| Details | File | 35 | securityonline.inf |
|
| Details | File | 1 | br.png |
|
| Details | File | 5 | blobrunner.exe |
|
| Details | File | 20 | shellcode.bin |
|
| Details | File | 6 | win32_remote.exe |
|
| Details | Github username | 2 | oalabs |
|
| Details | Url | 1 | https://securityonline.info/wp-content/uploads/2017/12/br.png |
|
| Details | Url | 1 | https://github.com/oalabs |