General
-
Target
44.exe
-
Size
38KB
-
MD5
35c33694801d3be00deef7a4ba408caf
-
SHA1
d92c638544c1797f566181124ebf0293807ab2fa
-
SHA256
475bd6b37ae7aa9f9d9572508de9769f59d6f1f44daba2952d282b51b8f1ad34
-
SHA512
bcb8ef398bbc38e0c75719d89924d970e7adfb8ddd54f9b78d28973c934a2cf9b5852ef24dcec64db6238edfcf1906994aa14258150ae645e72810e58e696c61
-
SSDEEP
768:ZN3mLrBkXMJ7hBtKVnTHd34DY7FWPx9KNOMhUjAz5Z:j2LrBvFpKlHB/F+9KNOMuEZ
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
129.159.225.178:19345
Mutex
A2ORy7smOQF0vEXx
Attributes
-
Install_directory
%Temp%
-
install_file
Upgrate.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
44.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections