General
-
Target
vane spoofer.exe
-
Size
46KB
-
MD5
dee0767e1182b3d778a20e91a369a764
-
SHA1
53354247e3fb28009733d3e07506058b26e44644
-
SHA256
31705ba861548b208ac3a9d2a3ca8f5198c4bd332ba432e9d13a67890190f788
-
SHA512
38487f52fe9cc99d94e39245b67e4f950beed307abb99de54fd6ff101ad5f9ddaa29bb1fe075b9886ad96dad44357629b52649183436c8ccfeb8df74b50c0fdf
-
SSDEEP
768:KcNCbujieCLvnDylOccuZnL2ZTjPgKZKfgm3EhFk0:1ejnD9cRL2ZTsF7Erk0
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1207304304457814038/hpcvN4uSBCLR8m5y4YRrNdAeq77mhZIoxZoDt6COdu4pb9btC3MSgviSoxySQwm2dGAB
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
vane spoofer.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections