General
-
Target
bPxC.exe
-
Size
38KB
-
MD5
49253fe107d9edd9d8a92d69377975c5
-
SHA1
05b07466061e631e83f54d0eb4335067933f62c4
-
SHA256
ea87bdca84791d7b13f4fae8744f3ef3ec81261be2b57f4dde80d9a2bcebdb2d
-
SHA512
946c732cb6890020e5f46ea65151ddfdb295d10d3288b4058b81c5e60e641a0729cc74706590a8db79939e1c267b9f64fda3de6f7ad169e71001104cbb487b86
-
SSDEEP
768:6yLKxAP+kxjytCDBeQHBr9I98L/4aBFo9B2O3hNOYu8:nP+kxjytVQtC8LwQFo9B2O3fR
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
4Mekey.myftp.biz:7000
Mutex
ShfS2HxZ2rT7T5PV
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bPxC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections