General
-
Target
ff393118bc88560e5d0ac69ec5beef8c_JaffaCakes118
-
Size
170KB
-
MD5
ff393118bc88560e5d0ac69ec5beef8c
-
SHA1
111300b261311016035a8f5ba337131b4c723032
-
SHA256
369c6acf41d605eb3e430f6201608a2e9e33ddbb98966ff1bc78729fd204f772
-
SHA512
42be1542e953f061562d9478541c919a082060b77f0231504de321f072bdd5f2ebc7e9258f324eb6d9a293d9e30aeea9a6952f2df49aa8584eb494af0ed67074
-
SSDEEP
3072:AEqretTBF7EuFQvn/Y2FMLajQyAJFLa/vi44:Qrbn/Y2FM+kDZqviB
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://canary.discord.com/api/webhooks/882617809564233761/JQHqreMf4-hBQhfaGdeX22uMO6Ip4219CD5VU3iBKP-HmTO5pnyaKaFp3DaIZwfLSKOh
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
ff393118bc88560e5d0ac69ec5beef8c_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections