General
-
Target
Latite Client_FixedV6.exe
-
Size
82KB
-
MD5
bf38405254d376cb248510f28beaf042
-
SHA1
49ef546d2d1554fb63a8b281819584d51594394a
-
SHA256
6d8a5505b4a9779aa578a800a6adecc990bdedad83e185999ac37eb7f26584bd
-
SHA512
aac8b2d7e03b8a83098a52433ab3c5850b2132269bdd9c6db879d71d2e4576d5a061b62a41798203dec60e07b3e4d0d37b03c870ba8e9dd417268c410939adcb
-
SSDEEP
1536:dTvXEvpIn4dDo5qveNSPZdl0xlbi3bYS+d5hSzmM16B/RhVjXjORQChcKbcHoe:5v00sDdHPfKx0bYSM5okfXjO5cWcIe
Score
10/10
Malware Config
Extracted
Family
xworm
C2
pretty-dressed.gl.at.ply.gg:64028
Attributes
-
Install_directory
%ProgramData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Latite Client_FixedV6.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections