General
-
Target
9c9248744724fe9bf0937870c940fa37d8da9b6f0958b4e80d675e66336aade5
-
Size
33KB
-
MD5
09b8e280502f76d6b175fe62bfd3b74e
-
SHA1
01cdc605c64d569223e99aeb6a6133189d31e03d
-
SHA256
9c9248744724fe9bf0937870c940fa37d8da9b6f0958b4e80d675e66336aade5
-
SHA512
5d23538a5046f31b5cd39fb2f3620f80ca75cf66e0f6e4b3a7fb0598c7202244c0210d2dc289ca8d9a7f0dd6570df6d804c87b42902b250b343ead5329ad24b0
-
SSDEEP
384:Ll+PkjD9+E5MFs7iui8L7zxM42pfL3iB7OxVqWFiRApkFXBLTsOZwpGN2v99IkuO:B+CD93W03242JiB70SVF49jTOjhObd
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
teens-ion.gl.at.ply.gg:56019
Mutex
TYcRVi8wqorGbvXm
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9c9248744724fe9bf0937870c940fa37d8da9b6f0958b4e80d675e66336aade5
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections