General

  • Target

    91f1616aef66aaccd78af4ca336bc40a

  • Size

    42KB

  • MD5

    91f1616aef66aaccd78af4ca336bc40a

  • SHA1

    ba1b71e5080465db3b000ba1d611c47dea35ae80

  • SHA256

    9e9e7ba74e9644038d96f5931d4e540622f115cb02b904b0ab12cac824b6fcc9

  • SHA512

    69b154c568577756cf8278e86c197a3f0b4dbcf9073d83bf287e508f58b9d87293f37c2528f7e4c0070cd87ca9ea991a9276fdc55e4ebc69ba36bada631b3950

  • SSDEEP

    768:0kxzKKqqI2SrZDfuZML4BUTjPKZKfgm3EhqBBZ:JNqH2oLL4BUTrF7E4X

Score
10/10

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/893739851856367676/SNpO4YQixEgiS4X-hS2OHJ7YfJwBYH4-HxSDTj7Gc8o3tusEz_drp0Q2X_8SEmWp3zLg

Signatures

  • Mercurialgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 91f1616aef66aaccd78af4ca336bc40a
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections