General
-
Target
9dd450bc1bfc21c1015f39c16c623726.bin
-
Size
49KB
-
MD5
9dd450bc1bfc21c1015f39c16c623726
-
SHA1
73c3e6378238a6d5ff5fba78a19ccb61a276bb8b
-
SHA256
b34a6bc82276a333e07486a2f4f57715704743f39e11eec7866d5a054e865ddf
-
SHA512
9c01168d01e6785b778caf8fdf43b274ca00aaf8d56f9b4cacd953b7ebd5375f08151f2b1990f7ee87a14fa7dee30f767630c47cb734827bc63e0b7d316243fb
-
SSDEEP
768:WAYbIDqaV6blSR6nhP7Irm5Fyl98i56YOjhulZzbwonH8wSpO1bNT:D6IDKSR6nhP0sFQ98i56YOjqwoH865B
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
20.ip.gl.ply.gg:58343
Mutex
ub7RI93O5DrBTB6X
Attributes
-
Install_directory
%AppData%
-
install_file
injector.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9dd450bc1bfc21c1015f39c16c623726.bin
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections