Reports | Triage

Sample ID

Created

Filename

Tags

Status/Score

SHA256

241222-chxfwsyqgk

22-12-2024 02:05 UTC

JaffaCakes118_5ff7082170d06e0244014d993a3a26f8dafbb00e

mercurialgrabberspywarestealer

241222-an5y4swkar

22-12-2024 00:22 UTC

JaffaCakes118_d36f7a42207d447e9100a73c9c6c86caa15c4fa6

evasionmercurialgrabberspywarestealer

241221-xfrg3swnas

21-12-2024 18:48 UTC

JaffaCakes118_533cf2fce7d99d880e645cc20d927116365eb564

evasionmercurialgrabberspywarestealer

241219-qgyjfstmbv

19-12-2024 13:14 UTC

evasionmercurialgrabberspywarestealer

241219-qaesrstpfj

19-12-2024 13:03 UTC

discoveryevasionmercurialgrabberspywarestealer

241217-ymanksxldn

17-12-2024 19:53 UTC

https://github.com/xsplitst/RGF/blob/main/RBF.exe

discoveryevasionmercurialgrabberspywarestealer

241217-k4ag9awrbm

17-12-2024 09:08 UTC

evasionmercurialgrabberspywarestealer

241217-kx6bcawqdq

17-12-2024 08:59 UTC

evasionmercurialgrabberspywarestealer

241215-2wgp2a1mbx

15-12-2024 22:55 UTC

agilenetdiscoverymercurialgrabbermotwphishingspywarestealer

241215-m2x7mstndn

15-12-2024 10:58 UTC

f3ade6713168551fafdbd5e2ab1d71be_JaffaCakes118

evasionmercurialgrabberspywarestealer

241214-y6jqlasrhy

14-12-2024 20:23 UTC

241127-xqsswsslej_pw_infected.zip

backdoorbotnet7140196255crypteddefaulteewxfvcxcxoffice04rmxwindows clientcollectioncredential_accessdefense_evasiondiscoveryevasionexecutionexploitasyncratdiscordratlummameduzamercurialgrabbermerlinmetasploitnanocorephorphiexquasarredlineremcosstealcvidarxwormzharkbotinfostealerkeyloggerloaderpersistenceprivilege_escalationpyinstallerransomwareratrootkitspywarestealertrojanupxworm

241214-1324waxnfj

14-12-2024 22:11 UTC

f0f18bc9fde3a2850814c5aa8720a60a_JaffaCakes118

evasionmercurialgrabberspywarestealer

241213-n3acmsxncs

13-12-2024 11:54 UTC

eb60cc7c8df99ffa730d19c1fd8a16d1_JaffaCakes118

evasionmercurialgrabberspywarestealer

241213-dwy3bayngk

13-12-2024 03:22 UTC

e9a6135ada08e50bf4233bd83ed1d4b2_JaffaCakes118

evasionmercurialgrabberspywarestealer

241208-xhvyaawrfk

08-12-2024 18:51 UTC

d8611f39a130b7af1059ede93d87c6c3_JaffaCakes118

evasionmercurialgrabberspywarestealer

241207-3bwtwszkbx

07-12-2024 23:20 UTC

d41eebef8dcc0c21529bedf93c6b1287_JaffaCakes118

discoveryevasionexecutionmercurialgrabberpersistencespywarestealer

241207-b8c99svngq

07-12-2024 01:48 UTC

mercurialgrabberspywarestealer

241207-b12mwsymgw

07-12-2024 01:37 UTC

mercurialgrabberspywarestealer

241207-b1cc1aymdx

07-12-2024 01:36 UTC

mercurialgrabberspywarestealer

241207-a77xtaxjbx

07-12-2024 00:52 UTC

https://bloxtools.net/AccountBeamer

discoveryevasionmercurialgrabberstealer

241202-azzapszpcz

02-12-2024 00:39 UTC

agilenetdiscoverymercurialgrabberstealer

241201-p89v5asjbt

01-12-2024 13:01 UTC

Xenith external.exe

evasionmercurialgrabberspywarestealer

241201-az39navpdp

01-12-2024 00:39 UTC

aslocs fornite private.exe

evasionmercurialgrabberspywarestealer

241130-wfeylsvjam

30-11-2024 17:51 UTC

MexoTempSpoofer.exe

mercurialgrabberspywarestealer

241130-v8625atqgm

30-11-2024 17:40 UTC

Mexo Temp Spoofer.exe

mercurialgrabberspywarestealer

241130-mpr5vswlhk

30-11-2024 10:38 UTC

evasionmercurialgrabberspywarestealer

241130-df2hhasrfr

30-11-2024 02:57 UTC

b47660d667192eb8ff7bd90f82b96be3_JaffaCakes118

evasionmercurialgrabberspywarestealer

241129-tm14bavla1

29-11-2024 16:11 UTC

b260f5ae462a0d75e674c84ddca81a77_JaffaCakes118

evasionmercurialgrabberspywarestealer

241128-yrm5gaylgt

28-11-2024 20:01 UTC

NewTextDocument.exe.zip

backdoordefaulte43a13office04sgvpzjebcredential_accessdefense_evasiondiscoverydropperevasionexecutionamadeyasyncratcobaltstrikelummamercurialgrabbernjratquasarumbralvenomratxmrigminerpersistenceprivilege_escalationratspywarestealertrojanupx

241128-yc84dstkfn

28-11-2024 19:39 UTC

New Text Document.exe.zip

defaultoffice04sgvpzjebcollectioncredential_accessdefense_evasiondiscoverydropperevasionexecutionasyncratmercurialgrabbernjratquasarumbralpersistenceprivilege_escalationratspywarestealertrojan

241128-cr9sks1kht

28-11-2024 02:19 UTC

Downloaders.zip

backdoordefaultdf523263f44cc8d55414a260a0197e4aoffice04sgvpsvhosttargettg cloud @rlreborn admin @fatherofcarderszjebmicrosoftcredential_accessdefense_evasiondiscoveryevasionexecutionexploitasyncratmercurialgrabbermetasploitnetsupportnjratphorphiexquasarredlineumbralvidarxmrigxworminfostealerloaderminerpersistencephishingprivilege_escalationransomwareratspywarestealerthemidatrojanupxworm

241128-bevmfsykgv

28-11-2024 01:03 UTC

https://buzzheavier.com/zpxca2zcg07d

defaultoffice04sgvpzjebdiscoveryevasionexecutionasyncratmercurialgrabbernjratquasarumbralxmrigminerpersistenceprivilege_escalationpyinstallerratspywarestealertrojanupx

241128-a17ngatncn

28-11-2024 00:41 UTC

241127-xqsswsslej_pw_infected.zip

aspackv2botnet9c9aa5defaultmain-pcmarsofficeoffice04tg@cvv88888zjebcollectioncredential_accessdefense_evasiondiscoveryevasionexecutionamadeyammyyadminasyncratflawedammyylokibotlummamercurialgrabbernjratphorphiexquasarredlinestealcumbralvidarxmrigxwormzharkbotinfostealerloaderminerpersistenceprivilege_escalationpyinstallerratspywarestealertrojanupxvmprotectworm

241128-a4gw8atpak

28-11-2024 00:45 UTC

241127-xqsswsslej_pw_infected.zip

botnetdefaultdiamotrixoffice04rewasdsgvpzjebcollectioncredential_accessdefense_evasiondiscoveryevasionexecutionasyncratlokibotlummamercurialgrabbernjratphorphiexquasarredlinestormkittyumbralxmrigxwormzharkbotinfostealerloaderminerpersistencephishingprivilege_escalationpyinstallerratspywarestealerthemidatrojanupxworm

241128-azmlxaxngv

28-11-2024 00:39 UTC

241127-xqsswsslej_pw_infected.zip

defaultcollectioncredential_accessdiscoveryevasionexecutionasyncratmercurialgrabberphorphiexumbralxmrigloaderminerratspywarestealertrojanupxworm

241128-ay5fbstmfp

28-11-2024 00:38 UTC

Downloaders.zip

defaultdiamotrixcollectioncredential_accessdiscoveryevasionexecutionasyncratmercurialgrabberredlineumbralxmriginfostealerminerpersistencepyinstallerratspywarestealerupx

241125-plkmqawngw

25-11-2024 12:25 UTC

OTEYZ_Loader.bat

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241125-pg5gbsspaq

25-11-2024 12:18 UTC

OTEYZ_Loader.bat

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241125-n55xbsvrbv

25-11-2024 11:59 UTC

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241125-n4qe9a1rgj

25-11-2024 11:57 UTC

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241124-j1z33a1ne1

24-11-2024 08:08 UTC

evasionmercurialgrabberspywarestealer

241124-jyvessxlem

24-11-2024 08:05 UTC

discoveryevasionmercurialgrabberspywarestealer

241124-jq57bs1kfy

24-11-2024 07:53 UTC

198e375610bc330eaf9db731f61b302269fc195d7071710684114166796e1b9d.exe

discoverymercurialgrabberstealer

241124-jpjlyawrgn

24-11-2024 07:50 UTC

198e375610bc330eaf9db731f61b302269fc195d7071710684114166796e1b9d.exe

discoverymercurialgrabberstealer

241124-htdqtaypgt

24-11-2024 07:01 UTC

1bdf2d64894f6ae05948436ee261bc8492611aae9feca26751934c79e5aabf81.exe

evasionmercurialgrabberspywarestealer

241124-hrlcwaypby

24-11-2024 06:58 UTC

1bdf2d64894f6ae05948436ee261bc8492611aae9feca26751934c79e5aabf81.exe

evasionmercurialgrabberspywarestealer

241122-el73xaznbl

22-11-2024 04:02 UTC

Mercurial.Grabber.v1.03.rar

agilenetdefense_evasiondiscoverymercurialgrabberspywarestealer

241122-bhzeta1lgw

22-11-2024 01:09 UTC

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241122-blb4paxlfn

22-11-2024 01:13 UTC

defaultevasionexecutionasyncratmercurialgrabberratspywarestealer

241122-bb8d5s1kez

22-11-2024 00:59 UTC

discoveryevasionmercurialgrabberspywarestealer