General
-
Target
CDT's Beaming method !! OPEN ON PROFILE !!.exe
-
Size
33KB
-
MD5
2d7c3b024ebe63c91d2128a270519d9d
-
SHA1
0dea064236922e8d3a25219df0689d656b39dd84
-
SHA256
187d500c840539f81ff208f7e332dbe2cbd96991963cd23fd3bfb72633f643cf
-
SHA512
4fefd2bfb5e27bfd091a6f673fdb65533aa1c057eaebd8eb709cfe416378cbcd98e4f61b96702b2e2d0b3065781737fd585edd79485ee74df8ce03abc825342a
-
SSDEEP
384:TE8PQ9Ba+vNuntf98d6ILj7jM42pfL3iB7OxVqWYRApkFXBLTsOZwpGN2v99Iku1:jUa+vNohsXI42JiB706VF49jSOjhPbw
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
127.0.0.1:7000
Mutex
giUfkslnPbZ3tn8b
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
CDT's Beaming method !! OPEN ON PROFILE !!.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections