Overview

overview

10

Static

static

10

ffc685ef73...18.exe

windows7-x64

10

ffc685ef73...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ffc685ef7323e67570df6740a308a365_JaffaCakes118

  • Size

    42KB

  • MD5

    ffc685ef7323e67570df6740a308a365

  • SHA1

    8e8c5cd7c0e4662107efba411b7714d2cc1a287e

  • SHA256

    5ec07c62956dc1e5a84851448d7520c79cbf48c140b0d44e00bf2cd816eb687f

  • SHA512

    0c7ee01cd7695bf8efc48d58464a433ba92c728ee1aac4679c637917548dbc03d806845cb6c5541c633b57d699a98e54f56b4cd7ba85db54ae61c54085ddd20a

  • SSDEEP

    768:SRmLvM7bTTylO0OuZ9LJkTjJKZKfgm3EhOSv:fjUbTT90tLJkTVF7EI+

Score
10/10
mercurialgrabber

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/883736221380145164/ELQVmid7iKH2kxHpnwEDEFpVGkgKYAKObJa5kcn7pPBI65J8LC_cVayfL5XF36C56auJ

Signatures

  • Mercurialgrabber family
    mercurialgrabber
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ffc685ef7323e67570df6740a308a365_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections