General

  • Target

    46e6c436a041deab1d6bcdc4c424cc63_JaffaCakes118

  • Size

    42KB

  • MD5

    46e6c436a041deab1d6bcdc4c424cc63

  • SHA1

    83bcb9874c19f6e49be2adc727a397c4b32de5e5

  • SHA256

    6125f85c79a7de2a11ff6983f4a6d5099671adf5e934d8671d7bc513967dcc18

  • SHA512

    de824ccf9467e0b28ad7553c4f115649438f4131ab5b3fa8acb9b09ec8a43c58317e80ed7f8ba0daee5c8989f48c2bdfd42987c75f41ae4f2d5e4297d95690df

  • SSDEEP

    768:OnUlGNWkT1bCtYTHACuZHLLUpTjgQKZKfgm3EhRh:OnUEPBCtYTgjLLUpTMQF7Enh

Score
10/10

Malware Config

Extracted

Family

mercurialgrabber

C2

https://discord.com/api/webhooks/893135694946508820/OHqgDevMX-a0Tnj9d-qoH0nsLrmD4ZymtC5GfUMN6XnkAEER1pMPeHvk5Q3hlNP3nyWR

Signatures

  • Mercurialgrabber family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 46e6c436a041deab1d6bcdc4c424cc63_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections