General
-
Target
проверка.exe
-
Size
99KB
-
MD5
db27649bfb89f40ec3ff301541c598f5
-
SHA1
a16885dd0b352e970c45bad6a691e155f9ccc8f1
-
SHA256
45814083c150dd3d946718f8728a1cdad2f9e68318e575c479263431ccf04abb
-
SHA512
3b35ea6511b4e047bd77a9fa525e489542379f5ddf61f49986cc92bfb8411a7d6673a3febf2d540e3dd03c7a73f17673c0c6e5d0d41f81970c18ff9ef3fe32fb
-
SSDEEP
1536:loZp0RHDlFZDCFb/AZ+bF5n5GGKx6wwOfRJ9PpP/UA/uoDjSBSc7UtYVL:Q4pFZyLAZ+bF55GSOn9Pdb1W0cgteL
Score
10/10
Malware Config
Extracted
Family
xworm
C2
19.ip.gl.ply.gg:65468
speed-wheat.gl.at.ply.gg:65468
XWorm V5.2:123
Attributes
-
Install_directory
%AppData%
-
install_file
Delta.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
проверка.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections