General
-
Target
Mods.exe
-
Size
108KB
-
MD5
d0766f038dadc4963a8684b1b738451f
-
SHA1
23759d331a6e502f2ce73daf02f53039bb1179f5
-
SHA256
6f11f8ad7788e265e5dfc9c415c361a30bbd88d7a8ef80034cb82c7866143eeb
-
SHA512
d37066021a0d00cbfa682a010d1c52352358bd5b6b299ad03ef1530c6542745fffe7e009bef33995480dfb9e24c71818eaf2d7c1a098ef5722a0cfd4eb71ea06
-
SSDEEP
768:3jLBRoat5b0vuZKL4KTjfKZKfgm3EhiJ+YC8Qz:gpVL4KTjF7EAJw8
Score
10/10
Malware Config
Extracted
Family
mercurialgrabber
C2
https://discord.com/api/webhooks/1265745201981423616/iM82MxICrDVrvz1mdITQtz3DfzkhcwmfxWl438ReBQZxkcAAdGdNbo191wrdJRoCoTOJ
Signatures
-
Mercurialgrabber family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Mods.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections