General
-
Target
da2d9a09c56c55e6f2c99273e209e024_JaffaCakes118
-
Size
54KB
-
MD5
da2d9a09c56c55e6f2c99273e209e024
-
SHA1
7f55d960bafe73fa7b176d6b0630d15aa2d2348e
-
SHA256
8418f2f5fab62a103d696fe0665bb096a521364365a0388c896f49ba53c29007
-
SHA512
1dd644a15a4031eb1e6567ba57bc4f50b575099264bb815d5dc343d8a45113b2a206a71a7fa65e73512db8223d14c0637de0edb4a464fbfda9771e8f25807b71
-
SSDEEP
768:gyl6vxsw4WPuOKmKi6pFdGf0WBREhLp9rcn3Xvrxuf9tm9iaO:cH4CemNYUnE79qPluf9tm93
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/895081835229499422/C-4p6FnV3BBEaxrHGblW5uYHAslOZ537qLkTyrUjFpLp6mKG29Z41veKjaEZ6m_o7XGT
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
da2d9a09c56c55e6f2c99273e209e024_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections