General
-
Target
39e3814c14a111a3ebfa62422647e1d553c8bbaccd9837294fb546aa8d8d9e16
-
Size
33KB
-
MD5
0c2154f22abcdb302753575f0ece3717
-
SHA1
f0588e96a310bc983b779f964f497e5fed6b94eb
-
SHA256
39e3814c14a111a3ebfa62422647e1d553c8bbaccd9837294fb546aa8d8d9e16
-
SHA512
b44c8c3880bd3b99364e5a03ba38c7e18e11c585c2e1509f6e29a60afd6d86a561f8063d3931dff10296faa156fb443fb85cc03bbb2d9401fe8fe982199a1cb8
-
SSDEEP
384:FE8PQ9Ba+vNuntf98d6ILj7BM42pfL3iB7OxVqWCRApkFXBLTsOZwpGN2v99Iku6:NUa+vNohsXm42JiB70wVF49jnOjhSbR
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
188.212.100.54:53533
Mutex
MuJQ1lo4B7KkUlmG
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Detects Windows executables referencing non-Windows User-Agents 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
39e3814c14a111a3ebfa62422647e1d553c8bbaccd9837294fb546aa8d8d9e16
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections