General
-
Target
testagain.exe
-
Size
33KB
-
MD5
e2115b92997fc9a2e75b2ca97776f2e4
-
SHA1
97da1611727e404a62fd7a9246f8172086c6dd15
-
SHA256
b618ca96038e7f280053fdf23ae4e5dc074ad15dce6a07491821b0652face570
-
SHA512
e1685c3a3c67d35b545ccb543cc57c00eb488eaa46db21c916c3528c8f629659c45d2bbe0edd80ddca3ca21e8d49f2c8d5ad07b8286194730f37bdb4aeaaef46
-
SSDEEP
768:HUa+vNohsX942JiB70qVF49jFHOjhWb+:avNohs94WiR0QF49j5OjMq
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
147.185.221.22:25565
Mutex
bBkyNI2JRQbLP5DA
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
testagain.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections