mercurialgrabber | h1uxBPz[.]rar

Sharing

Target

h1uxBPz.rar
Size

20KB
MD5

7f4806576acb0b5f6f8e4f0540f1a721
SHA1

27b8032ae5ccdd7a9f413d6cfade645c11c3f535
SHA256

7f82e780f4806e0aa0d81aff5c577f48e7292c1fc53999da0f1d570d0850d75a
SHA512

eea0905f5b596a6064c7cdfce0ba7d2666baddb4fffbf32bb309b4b65bf80eebb0e067718d5a513710dfc04b5d43f860060dcd4f7d8b6a3d6f8be4fafa4a3f24
SSDEEP

384:qAbT6388lbQqpXaQBweHOqD/mkg1ms9m1ltgf3LREAdfHjanNPXIxRH:bbmRlD3K0OqDEDmZaWS/0NPXWH

Score

10^/10

Family

mercurialgrabber

https://discord.com/api/webhooks/1207304304457814038/hpcvN4uSBCLR8m5y4YRrNdAeq77mhZIoxZoDt6COdu4pb9btC3MSgviSoxySQwm2dGAB

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Niggers/vane.cc.exe

h1uxBPz.rar
.rar
Niggers/ded.dll
Niggers/essentials/vane.cc will install essentials automaticly when launched.adsqafaeqfa
Niggers/lolo [DRAG VANE.CC THERE TO OPEN].dll
Niggers/vane.cc.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ