General
-
Target
3388bbf4da561a7a935c2e28c4431e00N.exe
-
Size
32KB
-
MD5
3388bbf4da561a7a935c2e28c4431e00
-
SHA1
911ff9f0835aeb40dad86e7936db92d0d6edfd15
-
SHA256
58353f805223dc425da599d497d02a66517c83f2c4023388a6580fb11bba82fd
-
SHA512
6120a0c50a4550c564f1fa8afdafd0aa0470c748237f11892d503068dba0958698e810b3d678f0264b557c9876acd3a01c0c58c8d2a6e5d35130b841e8798027
-
SSDEEP
768:Nkm3WDaYaqJOmhS8RTXY8m8Fe1LhFye9UokOjhiqU:Nkm3W2qJOcRT1mg4VFf9UdOjXU
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
animal-bear.gl.at.ply.gg:17343
Mutex
P05fJN6OX3jd3B36
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3388bbf4da561a7a935c2e28c4431e00N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections