General
-
Target
XWorm V5.6.exe
-
Size
225KB
-
MD5
cd33f6b2d486b8ec8e92c9da206b8931
-
SHA1
17189ccb9652b0359261ed50dbe7f6e8d327dd77
-
SHA256
05a8466eaf6b9c634d00a1a381c15d9be94a9298d606bb87b07408a7e59a296d
-
SHA512
f6e8a8f8fb9bc97f8eb0d83cc9c1df94f79bc46b87be2c2283e99468eccef591e3c8aa51c4a79d1b9cffbd0341036fd88881d917718fda38b852d0cb56e9b7dc
-
SSDEEP
3072:UAXAKEzo1A+bXbVheQvXqBL4ORl7VSzA2ewhLapuvpAsZOyMqmyBeYVYS:UATEc3XbHFOLjLSB/GWGwqqm1
Score
10/10
Malware Config
Extracted
Family
xworm
C2
else-treatment.gl.at.ply.gg:31932
Attributes
-
Install_directory
%AppData%
-
install_file
XClient.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XWorm V5.6.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections