General
-
Target
373b25bf896d734202bb6e0d2778dbc7
-
Size
39KB
-
MD5
373b25bf896d734202bb6e0d2778dbc7
-
SHA1
4128f0008d24aab29d62a066be81bd73d85961b3
-
SHA256
33ea3513c567899609ed141978262d50b4a0dcdb01be5486c66b2d515e0121db
-
SHA512
fafbaed02c649fc21848fd1773afaa08ab2d5dbc11eadae886ade077dc5574cc1e86f2a5c7087c909f1ceaf17c3623fe2507683aa5b5acee4e47350475f2542e
-
SSDEEP
768:yp7etQQ52jbm8YuZCLoOTjgsKZKfgm3EhZ:ESQQ52jVQLoOTksF7Eb
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/867529064041807872/Q10DxZc9HFtc4A4Pa5jOT40lUTV7G-f0onWpK_L3woVSRN8XMgjnWzzeutDFamL0sGuu
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
373b25bf896d734202bb6e0d2778dbc7
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections