General
-
Target
Solara_Updater.exe
-
Size
41KB
-
MD5
09e870076cfaa16f20be5050834ba8ff
-
SHA1
0b8b26cdaf08a07b8e86b1643ca23e249c8f3840
-
SHA256
f3fcb094f57ddd9e4c29eccc62e3ad3ce50d40230fbe0f00324ccf18acd68bc4
-
SHA512
d655030bf9bb84ecdd7109aab55c33976e2a2cbd63ccece48d3e881b1dd378e4e17f157a3dd9a07e8786650cbf46b8d742a115cb9906c9b69d7143c2b4de0643
-
SSDEEP
768:vZLEOU7+jFxaeACAr43MxfJF5Pa9p+z6iOwhsF3/ibN:vGr72FI/RrNRF49Iz6iOw2Jap
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
las-protected.gl.at.ply.gg:59571
Mutex
57uEOC4VgAs3IeCB
Attributes
-
Install_directory
%Userprofile%
-
install_file
Uni.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Solara_Updater.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections