General
-
Target
2316-2-0x000001A486A50000-0x000001A486A60000-memory.dmp
-
Size
64KB
-
MD5
9e80289afa1a42f0d60ec5f54b1cee25
-
SHA1
5ace0f8c1598708efdd21317567cc2b62a05756b
-
SHA256
98f5993511bf32ba8182c5432d82ed23c985bb2872bd3be9c88e6d3e047b8351
-
SHA512
5067ab81b561d8b02fb451c9b03f36b158ef0117bf4bfe1f8399462fe094586d796c2beb48f7e4d6d8c3f9811a75b2704be4748a4c1851e1d5d5f4112f648de6
-
SSDEEP
768:L3+vX5GC8+UfmW+U3oMYW923OnZ0aCIlFRKYGmry4t:IXYnnBZYT3OnWuUoxt
Score
10/10
Malware Config
Extracted
Family
xworm
C2
209.145.51.44:7000
Mutex
iLWUbOJf8Atlquud
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2316-2-0x000001A486A50000-0x000001A486A60000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections