Extracted

• • Target

    Blueness.exe

  • Size

    41KB

  • MD5

    b21ac4a352ff7497ceb505a2bcfa675b

  • SHA1

    b7f7c37e3698007d669996d55fe69816e40053a3

  • SHA256

    bef85bf8492824353c84665db8cbadf6d778e9105a580bb7dd0cf9137578c422

  • SHA512

    80f3418c05aeea581fddc0636846141841605352aeac000dd94190632b86b99c9a537a8aac74e27c417ecd11a3f9a628b4ecfd39f0c6994b527c6e8b34457159

  • SSDEEP

    384:yAaUZDRC2PZeXg25upQ1X+P2eYevLpCIb2uEy5y8Tcjs/XZxIh/0gJEFq5nmXQsU:NgPzetQIxo8CuZ0LaTCKZKfgm3Ehbr

  Score

  10^/10

  mercurialgrabberspywarestealer

  • Mercurial Grabber Stealer

    Mercurial Grabber is an open source stealer targeting Chrome, Discord and some game clients as well as generic system information.

    stealermercurialgrabber

  • Mercurialgrabber family

    mercurialgrabber

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Legitimate hosting services abused for malware hosting/C2

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2