General
-
Target
XClient.exe
-
Size
56KB
-
MD5
053a6310f8ec0e4d8d60612e028cb6d0
-
SHA1
6d4202e3171794a746b90d7c4987ba1f5ec59018
-
SHA256
817d509c9845a6f4d9ebee5bfdd8e6fd780e6e78e3d6110bfa02722d4149ff6f
-
SHA512
143a0bd587d37c2e1c119911839c4df7d349e6380a416204f70e397e9a7e3098bbb883b7b1a63922086a574a5775311082046ac5ef13414d8b47faec422a3a69
-
SSDEEP
768:KFdtREBXjH+dB/kUdej8ZUtG9z+Ve9woQxbtPE0ZQEypdVhQA+ZVLeAOfhqwtC:E7ACFkPG5/9ybF4PLT+bzOfIIC
Score
10/10
Malware Config
Extracted
Family
xworm
C2
users-arg.gl.at.ply.gg:59170
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections