General
-
Target
kkkkkk.exe
-
Size
41KB
-
MD5
0a0309d239faa5e9d9f53e5e8c02a1ca
-
SHA1
796e8bf0e64edbdfffdf676190ed65632d3d190e
-
SHA256
b789546b91150da62b9f1baafd5c4336d53648b58859c5d1326115488d72349c
-
SHA512
15be178dd7d836d5ed87ca1a3d5312942c5a84c3f86ee2b79eda5567f45fc518b04c0ac9aecbc983896bd79e3c0d6dec267bbfc3f14db487f29545d639e0d983
-
SSDEEP
768:yschJYwLfT6axpDXswxuZde0WTjmKZKfgm3EhIg:hcnfnx2e0WTKF7Eag
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1304986756986437652/HHDxxLiJM6tIxNgOju2S0hxKsgWTRC20_Address26Ulqxb
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
kkkkkk.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections