General
-
Target
RiseLauncher.exe
-
Size
42KB
-
MD5
643347f09a7d70f6c15981d6dee1501d
-
SHA1
6cd9a3ec9ec710ff110e31660a8b218fcaaf8d6f
-
SHA256
4ccd13fc504c14ccaff08e9a287fa79ee1e79aad11420acd6f40db13366993e2
-
SHA512
d87d057d243fbd0a5003ee9a63632765221a49e6cc2dae8f0aad69de21d03f1a9eac61c08ea3f365f96c50e77a2b2d434ec70dc0e4c382a094780a438c5c2b9d
-
SSDEEP
768:n09fQxYkWgHi0uZtLfBTj7KZKfgm3Ehew:nttHiPLfBTXF7EUw
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1250469925844422666/BD-Tigm4fkPmP0RlEY8wwv-FWGIHKBjbd-FhybGk0UlWFhFpFQxr9bs21Y5aaghj7K9X
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
RiseLauncher.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections