General
-
Target
neverlose.cc.exe
-
Size
42KB
-
MD5
799b611bf53a4d81c582975164dea8e6
-
SHA1
f0b24b3a85c03dc39e3af311895c706607aa719c
-
SHA256
eb1bb9072736b6fceb8141943391dc0873ca6a480068d062fda5a66aaa1bc61f
-
SHA512
48a850ff37ebe23c6f165370c55fe51801f949595bacedb9e4e44b7cf1e872d0b8bc8ff1fe012791171c564f727579b5fae5145a06ba02914960e08dc2fe877e
-
SSDEEP
768:Bn3gimKLvZabTTylO0NuZ2LwGTj6KZKfgm3Eh2R:Bn36KjZabTT90DLwGTOF7EwR
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1231275287602401372/tnvz52YPN4SEZqeyqi5xt67hyeRrJVA78nYyA2zieUyrlo5GgIb0qk66Ov_xzbSxeLyE
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
neverlose.cc.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections