General
-
Target
78470469575e6f64738a6d7b38e1a970922f52c791fcc859630655c8c3acceb2.exe
-
Size
75KB
-
MD5
0c5fe924fad68f3935ab565c25189c89
-
SHA1
bd188a2b5c255779c06983a077d2fc7b6551b4fc
-
SHA256
78470469575e6f64738a6d7b38e1a970922f52c791fcc859630655c8c3acceb2
-
SHA512
cf7e6b397466eaabc253b6dcda5eaa258e9d218e4c42b75a19eb64582e3962212726eff894f80826134fa5e2353d9a352e172df82c7734db57002eaec5add26a
-
SSDEEP
1536:lX10VcOwem0rrJpsdyS+bIzXXb4hBpeU69z+sOQwN+7ZbPI:n0VcOw7oNpw+bIhnOF6l
Score
10/10
Malware Config
Extracted
Family
xworm
C2
127.0.0.1:55213
21.ip.gl.ply.gg:55213
Attributes
-
Install_directory
%AppData%
-
install_file
svchost.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
78470469575e6f64738a6d7b38e1a970922f52c791fcc859630655c8c3acceb2.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections