General
-
Target
x.exe
-
Size
33KB
-
MD5
34a121a7d830fdb44446bbb902752a10
-
SHA1
af93e38c6d07c86ed57b0064f1ddaa5e76e11d63
-
SHA256
8c91e923bfb3391c14c33ded9d98a3d9f7def384de90693e4eee9cf4483b362a
-
SHA512
8c77592e2765b3eb78265ca4a72b28afd9635ed30575d4a7b8abdf9b44e0558b2a1d2b5559de85cfb1b9d79b50b1d37761dd4587d79af9aea15aaa44cdae68f9
-
SSDEEP
768:U4fK1pDGkptwyZScCBSUapNgqN8U/fZl+Bcg+tAlTF59ioO9hySgR1:cDGkptwyZScCkU4rqUXZcB5+tQF59ioL
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
freshinxworm.ddns.net:7000
7000:1234
Mutex
pX3t5E93mWOIWMg1
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
x.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections