General
-
Target
0ef12d0e6ff86f1fd94679ede6394ee3.exe
-
Size
42KB
-
MD5
0ef12d0e6ff86f1fd94679ede6394ee3
-
SHA1
26760249baab24c0509d4110fcbd5ea17c3f6652
-
SHA256
2e845433c21453c585b1a48debb2e7fc8cd14dc8c85f0945ed8ab6d55d600682
-
SHA512
8df894ef832d086556afe3fcbf0eafc536f4a4444db2799853a3d940e3190d00dc08d9fa7eb529c34eb890adc98241a5f0154cfa0d51b451feb2ef794d74e7c1
-
SSDEEP
768:1v2nu5soyYnsSlzV3isuZBLQUTjcKZKfgm3Ehmm:1rsCzV3iXLQUTAF7Egm
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/870515423043551302/bcvQrN4CyE-rhZolRgWHP8nYGGXa3vXhmHnArXSyiQsk3Qcu0CKP1wiy3zS8oU868Ggi
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0ef12d0e6ff86f1fd94679ede6394ee3.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections