Overview

overview

10

Static

static

10

c134be9183...ed.exe

windows7-x64

10

c134be9183...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c134be9183f8e1baf1c1475a468a98ed

  • Size

    294KB

  • MD5

    c134be9183f8e1baf1c1475a468a98ed

  • SHA1

    97530ff9247e065d4024a9719910cdca09a9e668

  • SHA256

    1e59dec24c499df08125a120a38207eadd88091384da292014da7fc753db93ac

  • SHA512

    7153f53f3c66960fd02ff9b103e44304ee4fc58e3902d16b0e6b9e37d03551941109246c0000afefdc79d31bb8d4670893cbd617f4de1d6cab17d82c0ad3c19b

  • SSDEEP

    6144:w8yuIfEW3gWVup6aaIb7b7YEKtayr4dZ1YnvkMK83LhJokenV6Iq2K7zJ+wpzx/4:vyuIfEW3gWVup6aaIb7b7YEKtayr4dZf

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/866572125506764821/L7CauC6B0qF1WUnQuEmSpJPjjXvj8gtD1PO7RXnvQmOuIX-EIsg2GFmoWzUoTy32cs4B

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c134be9183f8e1baf1c1475a468a98ed
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections