General
-
Target
b73e9b49cccfb63d21c1411b90e3938d.bin
-
Size
137KB
-
MD5
b73e9b49cccfb63d21c1411b90e3938d
-
SHA1
cb34c3a41b052c2fa4cd02014ce24dce6e70b9a3
-
SHA256
70c9e7ec4efbdf3c5c7a5acd92a4944bb058f5406334a87016aec2de7f052cb3
-
SHA512
abc863fa79f8ada5bc42c232894da4fad5acd15f0658a15cb6c81bcd0f61b3791f48a7e991c2c8afb100c612e11221dfc0c97d3f44eb99e80371be59e4684a84
-
SSDEEP
768:pjydtdHSpeUGDEqb1Fu9XM3OfhyDL2NOSfzkeoTpGB:c9UGIqpFu9X0OflsmkHIB
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
hydraww.ddns.net:80
Mutex
4Hz8M7aWlVpwapbQ
Attributes
-
Install_directory
%Userprofile%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b73e9b49cccfb63d21c1411b90e3938d.bin
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections