General
-
Target
64997d409e77d64df37e0c601a0a99244a2faa37d0583327028ad5e8e630d468N.exe
-
Size
77KB
-
MD5
7068f6dc598a3f37c88bc0579b2aa3d0
-
SHA1
ab03aa24cb0594a9f8704e09b2e482259a6168cf
-
SHA256
64997d409e77d64df37e0c601a0a99244a2faa37d0583327028ad5e8e630d468
-
SHA512
332327f1a18927df0c4dda8115d67a91dd3e4f7e4f5b184392acf7f5492cb183966cd6b6899088bb69077e6c33ac0ff39e57f7985e197cf786e208c93746c483
-
SSDEEP
1536:F1VC9OyS4DJer1MY66/z9bwhAWfEoN/RYOT58UWvm:F1VCYR4dehnH9bwRMmGOTrom
Score
10/10
Malware Config
Extracted
Family
xworm
C2
new-coder.cc:7536
Attributes
-
Install_directory
%AppData%
-
install_file
SecurityHealthSystray.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
64997d409e77d64df37e0c601a0a99244a2faa37d0583327028ad5e8e630d468N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections