General
-
Target
Upgrade.exe
-
Size
60KB
-
MD5
05bff91ea6b871c2a4aa7ff244c84129
-
SHA1
dc90a820c502bcd8377ff8528235ef0ea0230b63
-
SHA256
5c0ceb7882d3ea2260120d4be10df6a1e27d16a84e581ccbc21756a250141a22
-
SHA512
a85f761d6bd6bc31f717813fa0fa25b6dace506e5edd2444dc51d9d9e5ad82d8a1f3749f5d525e9cb13038d9e7b3ce9cf5df9733721e1bff4f74edb513d0e4f6
-
SSDEEP
768:+2M9CvHj7G2torj7lDbjoPflAe2HfbRm476G1CAAWOI05R2wOXAhu+uxCGU3H:+lEDzGXBo1kb376Km75lOQgWz3
Score
10/10
Malware Config
Extracted
Family
xworm
C2
3.68.56.232:12401
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Upgrade.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections