General
-
Target
GorillaUnbanner.exe
-
Size
42KB
-
MD5
2f0e33a107758d9752b5d8caafefda2a
-
SHA1
1cdd6766b17aad972cedd7e448f9704161709d08
-
SHA256
8ce381455c6cc7f68574f0e258e4aaa7a8856e439b9650bf2b110e922a73d791
-
SHA512
9f55614d1ce6296ad9212eece2ed5a64710a8566be8e660c830f554c567ebb28f9a0c0c345542fefda71bd7279a02bcec170f7d229893defde4485edfe2b59ea
-
SSDEEP
768:vFFGAUvRHCTuZSLRVTj75KZKfgm3EhYh:WRHCPLRVT35F7EOh
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1341192836023848981/MHmt34PTZZ_P_jTTneScbh_QIw9mlThCTekNBxgsaOnuwkBHwRizs2_F6x5ofxMBehpH
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
GorillaUnbanner.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections