General
-
Target
XClient.exe
-
Size
166KB
-
MD5
3d831633d3b023d25bed994439f942ea
-
SHA1
b18bc09fc05a45c77a0e6a5bf702e959667450f8
-
SHA256
b39bb6cc14449c8438d05b31ea62842c266f435c46813613b1ec61dfda909673
-
SHA512
89b22c6d1d150cc9e95f12b9c0d28c3624cd090ed9c079ef7528e94d92bc6766e21853b35d647c8b6f5255a172b4b53f6fb9fed8c9b5d93909b627d4dd241494
-
SSDEEP
3072:4YxKjIRdG2UR0LtZbyosWmcOX6TM+lmsolAIrRuw+mqv9j1MWLQbs:4oKjQ4GbyWc+lDAA
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
federal-true.gl.at.ply.gg:42772
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections