General
-
Target
fa7bac648c3984ac087f8698a3b8d9aa_JaffaCakes118
-
Size
41KB
-
MD5
fa7bac648c3984ac087f8698a3b8d9aa
-
SHA1
e75e80efbbb2bbe55b3c839288fb782cd2318a6c
-
SHA256
b1ecc4ed8adf7b9e33e5e3a0ea97d13d9f5272c36514e5c91b9e1fb97f839ae2
-
SHA512
5a97559ce2b024966472e2ea45858d74a4d0942e0dc15f950af52053977e66bc8656ad6afb6a7182e2cd3c7dfaab9302f40905298e4d77a089a755eb126b4031
-
SSDEEP
768:6scabfwOAge8jy5M/BgwXuZFeJWTjTKZKfgm3Eham:ZcILe8HoeJWTvF7EEm
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discordapp.com/api/webhooks/875488029408636929/9iQryvEzwkNdwwybu4SUrQJdc641YE8LorRjOuTOdsQ3TkMfTKWqJbwksop17BfgeuHk
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
fa7bac648c3984ac087f8698a3b8d9aa_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections