General
-
Target
b51dbe03a7d7ed5046b6c75593ec2090.bin
-
Size
34KB
-
MD5
43f762038ea96e018feb07f6a104bc04
-
SHA1
aee8322bbcd8814af8d03a9e7e78183b4f80ca2a
-
SHA256
89d345dd27da890f5ff7af74d7818bb835080445bbaeacdc95aa3a3bfedb4849
-
SHA512
af301adc218b1933c794931e2fc663b06f6007485aa710c5f5c7d4c48ad85404931512217f14185fdf7986fac15698b806ff0b18ebfda724d2fe2eea8e751d2f
-
SSDEEP
768:0eDUEuXTrvPcODPOg7AC4bSKx9hNIHnBl16RoZGS26fiu:0NjjPla1bSKTsl1+h6fiu
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
serverwindor.duckdns.org:5000
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b51dbe03a7d7ed5046b6c75593ec2090.bin
Password: infected
-
50cc18e65b1e6ca61f84eb2e255af53d1088db17585675c7eccc7a2236c13606.exe
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections