General
-
Target
bf0e7239c00f886f8ee1c18454a0e0fe
-
Size
42KB
-
MD5
bf0e7239c00f886f8ee1c18454a0e0fe
-
SHA1
f8e7655064b6a912354c298d8471322057358b5f
-
SHA256
5b495d2c237838cb93609b03cd71cb78020247760032ecfbd069b43d1695d720
-
SHA512
5b4ecadb31070de76222dcea62a5a91f3c71ec85ce9662b07de70c1cb48c4c50cc04f023d0779e565b48929a7379a6cd77d5c54e02ee2d63609ecb9a1d5ccaf0
-
SSDEEP
768:gyKSBZ6aNpDts+uZ2LlsTj3KZKfgm3Ehy6:g21NPs2LlsTDF7Eg6
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/872392030616170506/ZhEQBqSTfLP0OzireRDpd-Xx-qt9urbQVfoS9F0Etd0RLIU_SihsGKVTQlZkYv9NGImX
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bf0e7239c00f886f8ee1c18454a0e0fe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections