371edb664c31555dac5e695b0f7286115dd94b380c188948bde2f167f030a7d3

Submit
Reports

Overview

overview

Static

static

Mercurial....03.rar

windows10-ltsc 2021-x64

Mercurial ...al.exe

windows10-ltsc 2021-x64

Mercurial ...config

windows10-ltsc 2021-x64

Mercurial ...rs.xml

windows10-ltsc 2021-x64

Mercurial ...ner.cs

windows10-ltsc 2021-x64

Mercurial ...rm1.js

windows10-ltsc 2021-x64

Mercurial ...m1.vbs

windows10-ltsc 2021-x64

Mercurial ...csproj

windows10-ltsc 2021-x64

Mercurial ...ram.cs

windows10-ltsc 2021-x64

Mercurial ...nfo.cs

windows10-ltsc 2021-x64

Mercurial ...er.vbs

windows10-ltsc 2021-x64

Mercurial ...es.vbs

windows10-ltsc 2021-x64

Mercurial ...ner.cs

windows10-ltsc 2021-x64

Mercurial ...ttings

windows10-ltsc 2021-x64

Mercurial ...s.licx

windows10-ltsc 2021-x64

Mercurial ...Gcm.js

windows10-ltsc 2021-x64

Mercurial ...ser.js

windows10-ltsc 2021-x64

Mercurial ...mon.js

windows10-ltsc 2021-x64

Mercurial ...ber.js

windows10-ltsc 2021-x64

Mercurial ...ine.js

windows10-ltsc 2021-x64

Mercurial ...ram.js

windows10-ltsc 2021-x64

Mercurial ...ite.cs

windows10-ltsc 2021-x64

Mercurial ...ser.cs

windows10-ltsc 2021-x64

Mercurial ...ook.js

windows10-ltsc 2021-x64

Mercurial ...ing.cs

windows10-ltsc 2021-x64

Mercurial ...go.ico

windows10-ltsc 2021-x64

Mercurial ...config

windows10-ltsc 2021-x64

Analysis

max time kernel
98s
max time network
138s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241023-de
resource tags

arch:x64arch:x86image:win10ltsc2021-20241023-delocale:de-deos:windows10-ltsc 2021-x64systemwindows
submitted
19-11-2024 11:24

Sharing

Copy URL

Twitter E-mail

Static task

static1

mercurialgrabber

2 signatures

Behavioral task

behavioral1

Sample

Mercurial.Grabber.v1.03.rar

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Mercurial Grabber.v1.03/Mercurial.exe

Resource

win10ltsc2021-20241023-de

mercurialgrabber evasion spyware stealer

windows10-ltsc 2021-x64

12 signatures

150 seconds

Behavioral task

behavioral3

Sample

Mercurial Grabber.v1.03/Mercurial/App.config

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Mercurial Grabber.v1.03/Mercurial/FodyWeavers.xml

Resource

win10ltsc2021-20241023-de

discovery

windows10-ltsc 2021-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.Designer.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

Mercurial Grabber.v1.03/Mercurial/Form1.vbs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Mercurial Grabber.v1.03/Mercurial/Mercurial.csproj

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

Mercurial Grabber.v1.03/Mercurial/Program.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/AssemblyInfo.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.Designer.vbs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Resources.vbs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.Designer.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/Settings.settings

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Mercurial Grabber.v1.03/Mercurial/Properties/licenses.licx

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral16

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/AesGcm.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Browser.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Common.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Grabber.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Machine.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Program.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/SQLite.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral23

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/User.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral24

Sample

Mercurial Grabber.v1.03/Mercurial/Resources/Webhook.js

Resource

win10ltsc2021-20241023-de

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

Mercurial Grabber.v1.03/Mercurial/Testing.cs

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

Mercurial Grabber.v1.03/Mercurial/logo.ico

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

Mercurial Grabber.v1.03/Mercurial/packages.config

Resource

win10ltsc2021-20241023-de

windows10-ltsc 2021-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Mercurial Grabber.v1.03/Mercurial/Resources/Grabber.js
Size

4KB
MD5

11e1326e7a72627aa57b2d0449ffcc75
SHA1

97ba9b8d6cebacf6de762d1052bab1a1d7a8bb07
SHA256

1b3efea0c78f1caada48c61c672dab02bed5d9326d5dee83220abe6ece1cf5cf
SHA512

5afab603fabf1227471e88d64daf3be66a82bb0bb48e11b68427ac04791ddabb2577b43403a5ee184638a4190a2a5a81b9512fed0f383d1cd0b15bb3fcc759b0
SSDEEP

96:Jj4Y26KV7VPR+7Gs591qaq8IyI2SCfK1zMu8Bywy8RVV+QjykQfgKhL:iFPv+7H591qaq8IyHSCcz1Cywy8RVV+F

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\Mercurial Grabber.v1.03\Mercurial\Resources\Grabber.js"
1⤵
PID:2800

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads