General
-
Target
bL3l.exe
-
Size
57KB
-
MD5
1cbca4b629db1d4f018c34ef73a5e30b
-
SHA1
4355493bf39d0aed8faa64289903bcbea21012bf
-
SHA256
979d8beb1cdb03b48e13beb8034136aeb2899bf437ce1483cff67976a0706db2
-
SHA512
23ddf2296d65666f355aad8fa2b4660d74be53bdae7b17efe59171b92f8814552915f104e499133ae235ef45f1df7db28eb3404c90738339f6bccd58c29c4f02
-
SSDEEP
1536:3le3m0XCiB6d0P8g0dYfzuZb4efaaOlnwh05:1e3m+CiBR2quZb4cOlnw65
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
103.114.106.183:47074
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bL3l.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections