![]() Mercurial is a stealer family available openly on Github, being promoted “for research purposes only”. We have reviewed quite a few of these samples and updated our handling to work with them properly. Most recently the family has been reported dropping CobaltStrike payloads.Īs part of the latest campaigns we noticed a new variant of the family which had some structural changes which prevented our configuration extractor from dumping out the C2 field.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |