General
-
Target
black redux.exe
-
Size
37KB
-
MD5
3e3db93c47cd100ebbf71d9fc431d3a8
-
SHA1
c1fe2807817ea8637c898e17256c307151ccd3b4
-
SHA256
aa18e2163cb0232d29caf43ec59d1b5f1b56095ec4e68c8702059eba6fbfa4b8
-
SHA512
a767559d941c3041a55ea54faf139c5652c8e442ff1681e69bcb602762b209c3bca3768de6ee30eeb70c0edfa8c1d48aabf50ec11f3c5c9e78e393f1ac4a13c8
-
SSDEEP
768:Bv+ieKj7OGlx9ZqDAPFy59IsE6COjhNbpEFk+:Bvu2H/qGFw97E6COjtEJ
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
tool-seven.gl.at.ply.gg:52445
Mutex
VgdpDpCKTFyFQbQO
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
black redux.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections