General
-
Target
fsdfdsfdsfdsf.exe
-
Size
35KB
-
MD5
2c9aa8a32bf4b5b06dde3c3682f93944
-
SHA1
d93aecd90c4b03c1cf809549e93cdbb7fe2c6862
-
SHA256
b35a62cb65fda42082da39f67e5c67b21bddc2581e84692972815f286b3cbdb1
-
SHA512
110603daae5bb08322d59863930c288ca6a76cacf2b7a1c5d392c439b86535195efc46d0da1133c1403534764a8dac07b4835ddc5af45e3de7989c66f324e0bf
-
SSDEEP
768:T1XrJ6AhS6dQLkMTYdP/PKjzsjyOTFye9CLOjh6b/+v:T1XlcUdPusbFd9CLOj4+v
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
209.126.7.24:7000
Mutex
b0HvBg9NaZWNXILa
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
fsdfdsfdsfdsf.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections