General

  • Target

    35dcf1c817340d9938f0a8478b92338e

  • Size

    251KB

  • MD5

    35dcf1c817340d9938f0a8478b92338e

  • SHA1

    980b817caa2cda630f95be067959a7c34600930d

  • SHA256

    03593fe7ab4471441b73c2d48ee9587ef41f9f41b98ce1a28eb8137f4e5a7071

  • SHA512

    b83aee412b66e85301cc56a6c912dd990b7fc94a6e5db4736a138c874245c2f978eedefa87ed7445b0bad0fcf02f5863bc14e9c378b18d5e545139bfe1559858

  • SSDEEP

    3072:84GU9L+TQF7E6gOkIEgTmPDIyzX9qcEKt6t6lN0yfTPoICZJDU7Ty2oN2cdRW0pS:84T9tfwMIzb93JN3TAICLn2gRW0

Score
10/10

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/895696644769734676/h-RPuBKOeNBaezQKFt0t3g-8NrdJ5st8Lgpb-M4OlS_7IhJ5Z2V3c0wFIOXKn-2uxkNo

Signatures

  • Mercurialgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 35dcf1c817340d9938f0a8478b92338e
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections