General
-
Target
NitroGen.exe
-
Size
42KB
-
MD5
f750a0d3e70a6decff53c6b7b68e8f45
-
SHA1
67214581b14115a90a4cd769312006de2960014d
-
SHA256
3597543888589ceef37913c4e4bb6b614e1007c3bc9bb08dadef7f1832e87e2e
-
SHA512
42b6a6ad81045cf80821770b0310fb4b448d4ee13be126f9b9fbc993d0ecf26afad47161319f778f17ef8986d469a5d35dc1bd51532fe969d192024c567fad4d
-
SSDEEP
768:ZpIqetQIxm8NuZMML1KTjFKZKfgm3Eh/u:LSQIvyL1KTpF7Edu
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/973167134073057290/2TGqufzBz7BY3H7fTQpsc0bhd8b96GzmK54YBq2pkroeSC3GE4GsMpWErDDRnPN438Em
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
NitroGen.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections