Overview

overview

10

Static

static

10

485c2b8ad6...95.exe

windows7-x64

10

485c2b8ad6...95.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    485c2b8ad6313e9933836e56ab4ba795

  • Size

    112KB

  • MD5

    485c2b8ad6313e9933836e56ab4ba795

  • SHA1

    755ba09ac160bfa4f9b599dd0b25129958d9bb6f

  • SHA256

    b2dbab20234b44f1e508b660f2d88882d4f3383f5158600554bb1ca6de899896

  • SHA512

    8ef51d2aa2cde0de5e26893ba81c2b3f3af6ba6d2b0a1f87932386929f7750c8787b3cd6e64bbc339c745fc9a97e0eb108224910b204fff7c05831d6b33a5b7a

  • SSDEEP

    768:PGOD0qZiQdBZ6aZpDtsuuZ2LerTjCKZKfgm3EhCNrkWeHODrBStue4:PGOV1ZPsmLerTOF7EQNrkWeHODrBStM

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/878651263313661972/VjZv0i5bcEnJvQy76TRJCIM5f-4cc--yEhY4S9-Sr3icbSupMl2TeDepE5Xz0Iz5ROwh

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 485c2b8ad6313e9933836e56ab4ba795
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections