General
-
Target
XClient.exe
-
Size
145KB
-
MD5
550024bbe00de5e6cbd5299ef75cd182
-
SHA1
322a03b7254b169a4ad02850882048e7bbea9153
-
SHA256
9e7f943793be93ded000cb96d3b215bcd1477dd16ff5574b2bb665b029836512
-
SHA512
4f457f5ffda95ec7a01affd7741f098e6f1c901b087d685b51864a1bd5915c1190522a30ef3a114b9dcf5a1c61753291f986dcfa381491331357443340f55c86
-
SSDEEP
3072:4pLAeQHUPObzh+VOgeBz65/M6If+3Js+3JFkKeTn+H:SLAeQHGOb0axBt25
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.0
C2
lunassworld-50930.portmap.host:5508
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections