General
-
Target
30ae8846d850b2f08510327cec123110N.exe
-
Size
78KB
-
MD5
30ae8846d850b2f08510327cec123110
-
SHA1
448280e949f8e6bf9c8c115e85f4c57fdcae11cb
-
SHA256
4a8c2b7f26c36f551b35528e7371098518c633c78714953101848b56a2be3998
-
SHA512
596a538adb4fd2030f174a59b7ffe5681aaf128f4ab48cccb36b53f17140e9b16ecb1761de4bf0a529a65e2f8e120776a1d43508929314246c18529ed7cd7902
-
SSDEEP
1536:6B7hVQiJxRhRELI8sGCi3XzAz6UYDdPObxNjrLJzS6IlsOzGMTfGdFU:6BUpmi3Y3YDd2bx1LJzEGOzGMTfGU
Score
10/10
Malware Config
Extracted
Family
xworm
C2
necessary-threatened.gl.at.ply.gg:15323
Attributes
-
Install_directory
%AppData%
-
install_file
svchost.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
30ae8846d850b2f08510327cec123110N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections