371edb664c31555dac5e695b0f7286115dd94b380c188948bde2f167f030a7d3

Submit
Reports

Overview

overview

Static

static

Mercurial....03.rar

windows11-21h2-x64

Mercurial ...al.exe

windows11-21h2-x64

Mercurial ...config

windows11-21h2-x64

Mercurial ...rs.xml

windows11-21h2-x64

Mercurial ...ner.cs

windows11-21h2-x64

Mercurial ...rm1.js

windows11-21h2-x64

Mercurial ...m1.vbs

windows11-21h2-x64

Mercurial ...csproj

windows11-21h2-x64

Mercurial ...ram.cs

windows11-21h2-x64

Mercurial ...nfo.cs

windows11-21h2-x64

Mercurial ...er.vbs

windows11-21h2-x64

Mercurial ...es.vbs

windows11-21h2-x64

Mercurial ...ner.cs

windows11-21h2-x64

Mercurial ...ttings

windows11-21h2-x64

Mercurial ...s.licx

windows11-21h2-x64

Mercurial ...Gcm.js

windows11-21h2-x64

Mercurial ...ser.js

windows11-21h2-x64

Mercurial ...mon.js

windows11-21h2-x64

Mercurial ...ber.js

windows11-21h2-x64

Mercurial ...ine.js

windows11-21h2-x64

Mercurial ...ram.js

windows11-21h2-x64

Mercurial ...ite.cs

windows11-21h2-x64

Mercurial ...ser.cs

windows11-21h2-x64

Mercurial ...ook.js

windows11-21h2-x64

Mercurial ...ing.cs

windows11-21h2-x64

Mercurial ...go.ico

windows11-21h2-x64

Mercurial ...config

windows11-21h2-x64

Analysis

max time kernel
215s
max time network
289s
platform
windows11-21h2_x64
resource
win11-20241007-de
resource tags

arch:x64arch:x86image:win11-20241007-delocale:de-deos:windows11-21h2-x64systemwindows
submitted
19-11-2024 11:23

Sharing

Copy URL

Twitter E-mail

Static task

static1

mercurialgrabber

2 signatures

Behavioral task

behavioral1

Sample

Mercurial.Grabber.v1.03.rar

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral2

Sample

Mercurial Grabber.v1.03/Mercurial.exe

Resource

win11-20241007-de

mercurialgrabber evasion spyware stealer

windows11-21h2-x64

12 signatures

300 seconds

Behavioral task

behavioral3

Sample

Mercurial Grabber.v1.03/Mercurial/App.config

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral4

Sample

Mercurial Grabber.v1.03/Mercurial/FodyWeavers.xml

Resource

win11-20241007-de

windows11-21h2-x64

2 signatures

300 seconds

Behavioral task

behavioral5

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.Designer.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral6

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral7

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.vbs

Resource

win11-20241023-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral8

Sample

Mercurial Grabber.v1.03/Mercurial/Mercurial.csproj

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral9

Sample

Mercurial Grabber.v1.03/Mercurial/Program.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral10

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/AssemblyInfo.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral11

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.Designer.vbs

Resource

win11-20241007-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral12

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.vbs

Resource

win11-20241007-de

windows11-21h2-x64

0 signatures

300 seconds

Behavioral task

behavioral13

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.Designer.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral14

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.settings

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral15

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/licenses.licx

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral16

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/AesGcm.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral17

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Browser.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral18

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Common.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral19

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Grabber.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral20

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Machine.js

Resource

win11-20241023-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral21

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Program.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral22

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/SQLite.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral23

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/User.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral24

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Webhook.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral25

Sample

Mercurial Grabber.v1.03/Mercurial/Testing.cs

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Behavioral task

behavioral26

Sample

Mercurial Grabber.v1.03/Mercurial/logo.ico

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

300 seconds

Behavioral task

behavioral27

Sample

Mercurial Grabber.v1.03/Mercurial/packages.config

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

300 seconds

Report Analysis Logs

General

Target

Mercurial Grabber.v1.03/Mercurial/logo.ico
Size

104KB
MD5

cfcc2a4daa642e2ab93e70995c8e6537
SHA1

049da794fbfcc9dae85117a1f341388631d9a4cf
SHA256

e6c02185ad8bb078174f3833ef8dca782f8e81f66fddfc969007253fcc07e832
SHA512

ba2f08f5452cd264912722c4a6691eee1d2327894491b329b9e07e9730566db7888dbb87e3436f1ba0438bcc407d47c5af6f421b93585286832e750a0ff5be9d
SSDEEP

192:Q8eveEJFWaaU9Alg6MZsMkznQgmcdOWgzDaQXVWVCZYP9jgkqhR5zXrbEh2lZA:QzegFH65MkEgmWCHavJitrhXfEsl

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Mercurial Grabber.v1.03\Mercurial\logo.ico"
1⤵
PID:4296

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads