General
-
Target
c252459c93b6240bb2b115a652426d80N
-
Size
37KB
-
MD5
c252459c93b6240bb2b115a652426d80
-
SHA1
d0dffc518bbd20ce56b68513b6eae9b14435ed27
-
SHA256
b31ea30a8d68c68608554a7cb610f4af28f8c48730945e3e352b84eddef39402
-
SHA512
0dcfcddd9f77c7d1314f56db213bd40f47a03f6df1cf9b6f3fb8ac4ff6234ca321d5e7229cf9c7cb6be62e5aa5f3aa3f2f85a1a62267db36c6eab9e154165997
-
SSDEEP
768:LyMg0j1p2gKp72zsEZ5rsAi3XFyG9Oef6dOjhbD0/:LyMjU7LEZ5rsA2FT9Lf6dOjw
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
outside-sand.gl.at.ply.gg:31300
Mutex
FYd5zuRH3Dlkr67L
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
c252459c93b6240bb2b115a652426d80N
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections