General
-
Target
XClient.bin
-
Size
301KB
-
MD5
430ca51305f59f0c1ce9114487e26bb9
-
SHA1
c1166ea4aada6a848ef2f41776dcd4d30e0a65ec
-
SHA256
57ff9c14ceef5ba31b75d8fde541fb37042255e51fb354150b37f7bf9851edd9
-
SHA512
fc565248fa9e2a3f44a800bf6138ea1645c94deeb7f97d75b39c0291f960cb24ff526825e3e18d9e62ce1d507b8a9b6b2dc1388ac9631e33ab16f2c16bb1d0a3
-
SSDEEP
3072:sC2FK9RaOMrAZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ+ZZZZZZZZZZZZZZZZV:kK9u+GIIIIIIIhIIIIIIIIIIIIIIIU
Score
10/10
Malware Config
Extracted
Family
xworm
C2
soaremic123-35420.portmap.host:35420
Mutex
U2GaLiHPygj2aHLY
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.bin
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections