xworm | Eulen[.]rar

General

Target

Eulen.rar
Size

20KB
MD5

ad1581a5ab6d6b6ae4efcc21a1474077
SHA1

efc7283d1b3dc89bd4172796b00381bc998f4ffe
SHA256

eef9409313ffc82375b69fefe99cc5248b8f68463bc58e379069ab79d6b95f22
SHA512

ed08e90175e7fdc11f1c707de11bdfd50796a548c0094216ce4237ebbaafa4d1acd10231fc86a4d3b3ced8a72a061eb9eb2e8a08a024774cdd5d2994bebb5072
SSDEEP

384:f+5b67BzxG7evFoJD7vlilE7sn0CbOG0VmGU2ADqzDGlUQ:fGb6hLuVtiG7s0C6GQz6CQ

Score

10^/10

xworm

Family

xworm

Version

5.0

C2

0.tcp.eu.ngrok.io:15415

Mutex

5xrmrgzIJcHNgKgk

Attributes

aes.plain

Detect Xworm Payload 1 IoCs

resource	yara_rule
static1/unpack001/Eulen.exe	family_xworm

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Eulen.exe