General
-
Target
XClient.exe
-
Size
33KB
-
MD5
ac3237da89e28c71518ee2d5ae287e17
-
SHA1
2ea0433e950d1957f0a98dc650435e6d91a09e2c
-
SHA256
5274206298e3b9c5489d6755b1096cb5256fdf050fc66cb56cf77f0b68936c7f
-
SHA512
8d1e4cd3f9a33a2a59d3c2d5e9e5dacabbb66228a815747f4d03f391f74192abd06cfbfef74b54b3bb5fc88e13bfd1d080c37f44dbf6f2fa7ef86eac4148439e
-
SSDEEP
384:5fP/SG1aTTcPTEUV75LC2SM42pfL3iB7OxVqWYRApkFXBLTsOZwpGN2v99IkuisB:511weF3X42JiB706VF49j0Ojhvbs
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
introduction-specifications.gl.at.ply.gg:47117
Mutex
M8GCJc5Fttxxne9X
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections