General
-
Target
44a79bc2cbc8edd8d9fe5c11e6a142559c07141fa8250af46f97072b8811fe2b.exe
-
Size
64KB
-
MD5
92a4d5d3d5d7af4ab0da5b38e375bda4
-
SHA1
668b673544dfb57d6f0f82de9cf58c3f0ad0fa70
-
SHA256
44a79bc2cbc8edd8d9fe5c11e6a142559c07141fa8250af46f97072b8811fe2b
-
SHA512
63ec38827109492145bc17809991b41f3ee9949e76a88586376643bc2f682a7222f4b3e3c6bb7c9ba6c202d60e58416998ffafd99ef5d412420073d9f1be1674
-
SSDEEP
1536:oK5QNkuLTKQk9ZZnbpDTqtbSPDrAFC6Zc2MOOIHW:onk+oZPqtbCqd4OOcW
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.1
C2
line-ellis.gl.at.ply.gg:28479
Attributes
-
Install_directory
%LocalAppData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
44a79bc2cbc8edd8d9fe5c11e6a142559c07141fa8250af46f97072b8811fe2b.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections