Overview

overview

10

Static

static

10

877f6d13c0...38.exe

windows7-x64

10

877f6d13c0...38.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    877f6d13c07d8bf12af735a99beed038

  • Size

    42KB

  • MD5

    877f6d13c07d8bf12af735a99beed038

  • SHA1

    9d9289d5512e40c29f77ee903627d8a9d6dcaa62

  • SHA256

    8c1b08690fde062a6ca7d490790a830223501ab43e7c6d0f303da3e12d91cc4c

  • SHA512

    66ce2de492994cbad4e7a97a6ad43d353b91045be114b93f19f50946f43cfe290f779656ca0fb44d8a5877c9090b75c89fee91159e2064c02c07e2b6870491aa

  • SSDEEP

    768:cXZlgOfTs+ZeXuZ1LSCITj5KZKfgm3EhFH:8fTNZdLSCITFF7ETH

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/883031650039132190/phNAXEMAdphm_TMK2mngMhPvGGiri9mct28xUaLAisoEC3TKXPeV1S33mT51lasnTSrx

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 877f6d13c07d8bf12af735a99beed038
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections