General
-
Target
XClient.exe
-
Size
69KB
-
MD5
1895a665f381a7b0ba87f1a76744859d
-
SHA1
4d59eca4fc0ef83059b37b24dcb34367c1d2b677
-
SHA256
3732f4943e8de6d9fec1a3f11892290fa99eda604fc2eefc435052a912c60d8d
-
SHA512
58a84d82e860bcfde669b519b84e5fe4e163bdf4d429c2fbc9910354e7f636956dbb50d1f5637b5d86fb6e99277e2d8c977bc0861bde648da20db26d220674cb
-
SSDEEP
1536:97Te1vY00P2GNNhxRnQY1as+bDnEsRrqUG6W+BbhOYbiaNDOW:97Te1vY0rGN/HLks+bDEsROUu+xhOYbb
Score
10/10
Malware Config
Extracted
Family
xworm
C2
data-dakota.gl.at.ply.gg:2094
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections