Overview

overview

10

Static

static

10

b1faa78d47...18.exe

windows7-x64

10

b1faa78d47...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1faa78d4779adbd4c7e4a9a428a1247_JaffaCakes118

  • Size

    42KB

  • MD5

    b1faa78d4779adbd4c7e4a9a428a1247

  • SHA1

    9433c5982146e434604ae350cc9ecd7b4829d9a6

  • SHA256

    09f0de084878957eed32dd67002c17a4d2a888e82bdb02de039605fee83e8f8f

  • SHA512

    ea5dfea9689f08c90e4de03caf206acc80d379877e92f5e0bbbd84ad5d2af91002b9b1d8d011293167898be7f90af1ed3e9102dcfe2a27ddfe3fdc5f0d06d872

  • SSDEEP

    768:+b62OgOpRTs+ZexuZXLs1TjYKZKfgm3Eh/K:QKpRTNZ5Ls1TkF7EJK

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/860972377819054132/xTrMhIPKDKBt7a1Z6CyGyp0AIKaeE4u5caYubO1zoqd2IyeZtC0WvY-t7Vmhhy36y2o-

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b1faa78d4779adbd4c7e4a9a428a1247_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections