Overview

overview

10

Static

static

10

76695e40fa...af.exe

windows7-x64

10

76695e40fa...af.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    76695e40fa29c497c7d64b934f82c1af

  • Size

    149KB

  • MD5

    76695e40fa29c497c7d64b934f82c1af

  • SHA1

    f9745cafec9860c87f614819b0b4a0d197e13177

  • SHA256

    d25a61aa47795b68c8fd0fb43c383f4d57ba596ccab13b43399b5b6998140faa

  • SHA512

    9236006200583b874c81887d993c0696f9a44df479fa1686dcafe9290dfe4baac691debb511f058fb4c6a3dbbcd486419526933420e4df10db0bf4d9b7bdb5e5

  • SSDEEP

    768:iPt6BZ6aZpDtsuuZ2LR4Tj8KZKfgm3EhLH/xEFu1YPs9jhpPgLn4fd1Ne:X1ZPsmLR4TgF7EJfxEh2jhpYkfdz

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/871947853260550184/S-y4zHuXpN7La9cQqu-MtLKHQStJRMuQoqD7ny4XPOC0zl-8cm7A_UGJFOkh49Ky5ApB

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 76695e40fa29c497c7d64b934f82c1af
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections