General
-
Target
BigStorage.exe
-
Size
54KB
-
MD5
e4c2d116ff8f8602d7ca81f025036d5e
-
SHA1
94b46e5379e1314ee96ffbaa48593ef326a9a1d4
-
SHA256
1bd799f8311e4ed91a9e07a2d0ab1f0dfb737b2bf781dd15f854a324e837558f
-
SHA512
92564e49328e9e282b18487f1cdf25a6d0badfe981fd02f88f4692f1a8eddd9899de9bae8faf18936e8513338a4aa4e738cb853722678a42246536ae8daf8fe3
-
SSDEEP
768:pscaIyIJVENs/ywjuZeeJWTjOKZKfgm3EhHpUgzkrZEhJJtkAZPmE3OR:2c1TVEgreJWTaF7EFpUmNvzPF
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1356312400638247114/GvA4p92IQSQKZMWJi3SXvoE1endRZG65DVGTN3juCh_-euq8AYz3K3YVPjOQLjStWmTI
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
BigStorage.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections