xworm | Process Hacker[.]exe

General

Target

Process Hacker.exe
Size

35KB
MD5

488bce36a8946cabbda91977ac002c8a
SHA1

6fa107cb8306e78116218f13ee59130909bd0877
SHA256

0e44f48556c67d7786b44877ced76acdc197b22a813a9369bc763cd8d67d8d7e
SHA512

145c818f8861395f38fc68d05ea10efbf8b38d83fc24ec618b3b442aa02c839d6cdfd213b94815a1312fdd44ff89c1a348a9d98da3be8ae69923202fddb59c80
SSDEEP

768:i0n8WmWOBf2novdCLQJFFGTka5Fyp94/6pOjhZyl6:i88WmWOBaoYLQbITZF094/6pOjrJ

Score

10^/10

xworm

Family

xworm

Version

5.0

C2

library-attachments.gl.at.ply.gg:8838

Mutex

8gfrV5Z3IRPvpjTp

Attributes

aes.plain

Detect Xworm Payload 1 IoCs

resource	yara_rule
sample	family_xworm

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Process Hacker.exe