General
-
Target
2760-25-0x0000000000400000-0x000000000040E000-memory.dmp
-
Size
56KB
-
MD5
8e7aca2d2fe4378d519ef4a671c0d549
-
SHA1
2820b4cb6e1d97f18d87084b65595e4f6f1518d3
-
SHA256
8e4afd5a7c53da9d0ad72aefbb3255a02784daa42c1035fb6d4822c1b600b3de
-
SHA512
3371ac728d9e82423861bf538fc3222f5d3171d460d324bc145d68032f9227bcd6e22ab25e498dbd3d06c7d9f70c6ee843c78259142eae74367d063042e418a2
-
SSDEEP
768:1Ua+vNohsXn42JiB70qVF49jJ2Ojh5bu:YvNohsn4WiR0QF49jJ2OjjS
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
79.110.49.133:5700
Mutex
Bg9JRZDpyEfXxrAy
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2760-25-0x0000000000400000-0x000000000040E000-memory.dmp
Headers
Sections