General
-
Target
Ij2Q9Xhw4Y.exe
-
Size
42KB
-
MD5
ea47fefbd157685f965b0b525e45cfc3
-
SHA1
4b9dc380793fb735d2ab60612f92746835b47351
-
SHA256
e5b94992dc8f2666ecf4510e2507bda305edb9e83c75b963eae8533bfcb30cfa
-
SHA512
f2edad570d5837ab31bd8d5368057acf1fb2764dba95d01d6654a4ad458a56e084d1d99d26a2b6a5fba95e3056ad755b8cd2dfef36f25ac179f3882e83b323c0
-
SSDEEP
768:Nj65E9E//4MyuZuLanTjuKZKfgm3Eh/Sb:OEIDKLanTaF7EFi
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1246387239450312725/BkqGXbQYgbYWLGksNphV51YVctifU8VPooAOotPM5xnV11lm6P01faflv-0cvwItfQm0
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Ij2Q9Xhw4Y.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections