Extracted

• • Target

    fa7bac648c3984ac087f8698a3b8d9aa_JaffaCakes118

  • Size

    41KB

  • MD5

    fa7bac648c3984ac087f8698a3b8d9aa

  • SHA1

    e75e80efbbb2bbe55b3c839288fb782cd2318a6c

  • SHA256

    b1ecc4ed8adf7b9e33e5e3a0ea97d13d9f5272c36514e5c91b9e1fb97f839ae2

  • SHA512

    5a97559ce2b024966472e2ea45858d74a4d0942e0dc15f950af52053977e66bc8656ad6afb6a7182e2cd3c7dfaab9302f40905298e4d77a089a755eb126b4031

  • SSDEEP

    768:6scabfwOAge8jy5M/BgwXuZFeJWTjTKZKfgm3Eham:ZcILe8HoeJWTvF7EEm

  Score

  10^/10

  mercurialgrabberspywarestealer

  • Mercurial Grabber Stealer

    Mercurial Grabber is an open source stealer targeting Chrome, Discord and some game clients as well as generic system information.

    stealermercurialgrabber

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2