General
-
Target
16ff79fdfcc7121d6708abfdfecee47f270172197e8930be662aa90c066bc297
-
Size
209KB
-
MD5
40445c7b306d9e99389b690b73d21fff
-
SHA1
3f127667dd14695287626204e9845cf36cb92d4e
-
SHA256
16ff79fdfcc7121d6708abfdfecee47f270172197e8930be662aa90c066bc297
-
SHA512
ef44ed721f3b70d9718aa910d32a4a9b2278340db3d0e1b74f94e9229433be97b6500982fdb3fbb6b3daabf54cd3ba19215bf3f97955685818f8f3a7106ef07f
-
SSDEEP
1536:p5K5HJGtsla2eX5abvlg9GG8XUYknucIIe7UIOvIW3:p5K5pGSAXMvlg9JdnFID7UIOvIW3
Score
10/10
Malware Config
Extracted
Family
xworm
C2
10.2.38.48:8000
Mutex
rrt7cLzjnn8UwLIZ
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
16ff79fdfcc7121d6708abfdfecee47f270172197e8930be662aa90c066bc297
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections