General
-
Target
zzer00dayy.exe
-
Size
73KB
-
MD5
03df923e08d1662636bbb83b1a3940ef
-
SHA1
27a3091cda56cd5e8811f77477e4dbb2b9e5bb4a
-
SHA256
3c2aa16f4adab181e870e3e6f2d785d2539b3f3cf9986bdac1c73d882eabef38
-
SHA512
fbec3a91c8fd7b433299740bd452b50332fff65ec657854246f8d8f22e7f147188897a4a7d566ea87a1e67f983d40c5ae617b338f841959794f8c1b92f4a28e6
-
SSDEEP
1536:h3EPrHl79VqwtbfNY0Uy+b4GvdG8EYXUjY6NTOQO/kJwgcn:hQH5/9fG55b4G15wTOQO/bzn
Score
10/10
Malware Config
Extracted
Family
xworm
C2
vodkaleboss-63615.portmap.host:63615
Attributes
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
zzer00dayy.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections