General
-
Target
XClient.exe
-
Size
7.0MB
-
MD5
8535895cbb5917fc693cc02df63334d7
-
SHA1
4390263aeb6f8c595c31bef2c9cd044b2e632c19
-
SHA256
22cd0ea8e954e8089d812fd43dadb9d71a76d31dedaaa022cc11c5b55ef74235
-
SHA512
aab99515fcf7412ba968b04982e370866f4aa43eb3708f2f5571ec7fb84543e1237420e148444ff51a306dcf953084853dfc75b9b2bc2937fa41ad083ebac9b0
-
SSDEEP
98304:OB2pC6XG4HNkq5UKPhc24Y1/QPldHVTgPNhV0ADXqQgpkWDRIZVMnu0jjD8ueJU:jcUG4raKu24YY7HVT4hV0AD6QgqKRgX
Score
7/10
Malware Config
Signatures
-
Obfuscated with Agile.Net obfuscator 1 IoCs
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections