General
-
Target
XWorm Ping Optimizer.exe
-
Size
209KB
-
MD5
43bb693a4d3ca23a85015b487f0db69a
-
SHA1
4a29501c02988e111c2c6c9dccdbd135c119a4e8
-
SHA256
f645030d125dac92a38f919cc0b134f7cba5f70f0fc5ce421a532dfe1515c22e
-
SHA512
3694b42ef2f8ad357df9934349c100a0fd6a8386c7859ee1299bc34ba200429ac9584695a174050c425c91f120d9f40091773963e9a3427c323f614a36b7ca13
-
SSDEEP
3072:ugUv1gB5CLa9bqqsBoO/Ya1W7T4MxK08cnNizrQxs/DrGQG3v9RfPJ:uJ1I5CLqbYlIT4MxKJzrAP
Score
10/10
Malware Config
Extracted
Family
xworm
C2
functions-screensavers.gl.at.ply.gg:11035
Attributes
-
Install_directory
%Temp%
-
install_file
XWorm Auto Updater.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XWorm Ping Optimizer.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections