General

  • Target

    94c1e533a240809bef8a3826d56d2f94

  • Size

    42KB

  • MD5

    94c1e533a240809bef8a3826d56d2f94

  • SHA1

    1747274ea128e7bdba3588bb73911813625b7e11

  • SHA256

    2717af5356469849234dfe169a2de11a721e4c8d107e7a697e47d68dc8d5bb8c

  • SHA512

    c525061d9466adf26faa93c974e71156b3ca9b7249cc961fff9234bb3746e47d12e255c2dc90ed2e95cbd0a019db43c0727459974770b7ee04769f6cbb926e8a

  • SSDEEP

    768:JM8LsY8YKcKIEomMiuZbLXhTjQKZKfgm3Ehnn:QLYKcbc+LXhT8F7EZn

Score
10/10

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/868244438231707720/AozenKoIXGy-3xYWz1qvuRdLgrfw_LhQrMwFecqS1nRfdoypfkv3VzhdEHafYs5ES-L_

Signatures

  • Mercurialgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 94c1e533a240809bef8a3826d56d2f94
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections