371edb664c31555dac5e695b0f7286115dd94b380c188948bde2f167f030a7d3

Submit
Reports

Overview

overview

Static

static

Mercurial....03.rar

windows11-21h2-x64

Mercurial ...al.exe

windows11-21h2-x64

Mercurial ...config

windows11-21h2-x64

Mercurial ...rs.xml

windows11-21h2-x64

Mercurial ...ner.cs

windows11-21h2-x64

Mercurial ...rm1.js

windows11-21h2-x64

Mercurial ...m1.vbs

windows11-21h2-x64

Mercurial ...csproj

windows11-21h2-x64

Mercurial ...ram.cs

windows11-21h2-x64

Mercurial ...nfo.cs

windows11-21h2-x64

Mercurial ...er.vbs

windows11-21h2-x64

Mercurial ...es.vbs

windows11-21h2-x64

Mercurial ...ner.cs

windows11-21h2-x64

Mercurial ...ttings

windows11-21h2-x64

Mercurial ...s.licx

windows11-21h2-x64

Mercurial ...Gcm.js

windows11-21h2-x64

Mercurial ...ser.js

windows11-21h2-x64

Mercurial ...mon.js

windows11-21h2-x64

Mercurial ...ber.js

windows11-21h2-x64

Mercurial ...ine.js

windows11-21h2-x64

Mercurial ...ram.js

windows11-21h2-x64

Mercurial ...ite.cs

windows11-21h2-x64

Mercurial ...ser.cs

windows11-21h2-x64

Mercurial ...ook.js

windows11-21h2-x64

Mercurial ...ing.cs

windows11-21h2-x64

Mercurial ...go.ico

windows11-21h2-x64

Mercurial ...config

windows11-21h2-x64

Analysis

max time kernel
213s
max time network
280s
platform
windows11-21h2_x64
resource
win11-20241007-de
resource tags

arch:x64arch:x86image:win11-20241007-delocale:de-deos:windows11-21h2-x64systemwindows
submitted
19-11-2024 11:23

Sharing

Copy URL

Twitter E-mail

Static task

static1

mercurialgrabber

2 signatures

Behavioral task

behavioral1

Sample

Mercurial.Grabber.v1.03.rar

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral2

Sample

Mercurial Grabber.v1.03/Mercurial.exe

Resource

win11-20241007-de

mercurialgrabber evasion spyware stealer

windows11-21h2-x64

12 signatures

300 seconds

Behavioral task

behavioral3

Sample

Mercurial Grabber.v1.03/Mercurial/App.config

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral4

Sample

Mercurial Grabber.v1.03/Mercurial/FodyWeavers.xml

Resource

win11-20241007-de

windows11-21h2-x64

2 signatures

300 seconds

Behavioral task

behavioral5

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.Designer.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral6

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral7

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.vbs

Resource

win11-20241023-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral8

Sample

Mercurial Grabber.v1.03/Mercurial/Mercurial.csproj

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral9

Sample

Mercurial Grabber.v1.03/Mercurial/Program.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral10

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/AssemblyInfo.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral11

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.Designer.vbs

Resource

win11-20241007-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral12

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.vbs

Resource

win11-20241007-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral13

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.Designer.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral14

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.settings

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral15

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/licenses.licx

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral16

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/AesGcm.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral17

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Browser.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral18

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Common.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral19

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Grabber.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral20

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Machine.js

Resource

win11-20241023-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral21

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Program.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral22

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/SQLite.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral23

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/User.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral24

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Webhook.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral25

Sample

Mercurial Grabber.v1.03/Mercurial/Testing.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral26

Sample

Mercurial Grabber.v1.03/Mercurial/logo.ico

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral27

Sample

Mercurial Grabber.v1.03/Mercurial/packages.config

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Report Analysis Logs

General

Target

Mercurial Grabber.v1.03/Mercurial/Resources/Webhook.js
Size

10KB
MD5

167312d0bd902f5d9511bb5b66cb225f
SHA1

66c4f63ca7e0332ba781d4b1650f36b0e811d085
SHA256

c6306d6bbfc3d62454f8d33cd5daf7e01f1938be38cc1c61eefa2f4f25e0ec8c
SHA512

a692f9f1e24423ca6787cf618a296d4805ed5ec02bb39754413d37b536032488b874d4999f10a3a8d524dce47e82091b73edc194f19394d04057f6018771c743
SSDEEP

192:iFPGQeyzXjwwIsl9DHk1qmVTJYUAB91LXT4OUr2yiBQbTsAJAZT6xV82+ItuKxAH:itGQfjwVk9DHk3NJYUAB91Lkn3YZ

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\Mercurial Grabber.v1.03\Mercurial\Resources\Webhook.js"
1⤵
PID:2580

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads