General
-
Target
0x000a00000001224c-5.dat
-
Size
183KB
-
MD5
74900c1864e1ac9532fb9e431a34fac8
-
SHA1
370fbccc625ce19c73397f51ae28a1d0946a2673
-
SHA256
5cabcd8b0594cad224b92c1a0715e932738e3313d220739f952d459e2be217b0
-
SHA512
9914155f5594f98fb9a660f2dad2d649241fc424d290fba6fe22a8236c890cd283537cbac9852e9d9ecf7ea2ab617661460fd8ce5d0647ebc0f7e1ef32f9ee4f
-
SSDEEP
3072:KjF1eatZ4+FbL++D+0d8OqAVrCUM+lmsolAIrRuw+mqv9j1MWLQI:StZ4+Fba+B2+lDAA
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
146.70.181.231:5522
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x000a00000001224c-5.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections