General
-
Target
6ed782d7c506c1bc4b48f7777b2e61ed_JaffaCakes118
-
Size
42KB
-
MD5
6ed782d7c506c1bc4b48f7777b2e61ed
-
SHA1
39b8bc345a681d0dd50e7e73d88b2a08c7f55182
-
SHA256
b0f180f9a10c0a67bbb9e93c49e7e5cee87a83c59e7926d7bd8b89801a2db8d7
-
SHA512
1b74dbcd9a3ce900ee0a900333e852ea58a6a4e41325744362daa501f8c95abdbeabbc32fd00ffc9f29b3bd9d3699d69a67b6623fbe88fac5084681a90bb86e2
-
SSDEEP
768:zRmLvZ8DylO8wuZHLNaTj9KZKfgm3EhyE:Uj6D98dLNaThF7EYE
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/894259685274841180/ngfBaQeVxACr5Og8svG2A6bUi3RntYVe5d7lRbZAiwXVUA-GlvW0v253fEq_kqWi4SRd
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
6ed782d7c506c1bc4b48f7777b2e61ed_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections