General
-
Target
f3ade6713168551fafdbd5e2ab1d71be_JaffaCakes118
-
Size
222KB
-
MD5
f3ade6713168551fafdbd5e2ab1d71be
-
SHA1
4a20c1808f7e22a6dfa62cf07925d55e9c3dee45
-
SHA256
b214f874b15e575ea8bea0d06f2949b55a5494c08fb170f756687dd5fc334fea
-
SHA512
5bd4d915636efa87888e522a548f009a15849de0338d334ed5b58e06f07b92a1d5f1d14e1dc1f4feda018cb219b568d4e129308d10d046b1d30867d329b768c4
-
SSDEEP
3072:Bx4GXLdToF7EO+zS4Yei9yA+8BJEJYkEi433WChOBLCfdsOkkk2qW6j1Cn44hyJZ:X4GXCq4yA+8BT7WCImd5O2qHjYn3y
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/874113527097462874/BdRS5kKsWl2gs83uOgYwvRZzwcvsisSX7YcPhVC7gswTEi5A-oAJ7UecGqsJRDeAMhFs
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f3ade6713168551fafdbd5e2ab1d71be_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections