General
-
Target
90056a1a1b544d5520733d0b75bd23afa0638b9b549fba1621bbcdd99927d5c5
-
Size
87KB
-
MD5
02851f62eee9e212c817a6d9362a9c33
-
SHA1
51db5c5a4d22bd8c558be099522842f528a39532
-
SHA256
90056a1a1b544d5520733d0b75bd23afa0638b9b549fba1621bbcdd99927d5c5
-
SHA512
4b770f789f895c32c7bef2806ec2598f32e8660e453f301c031784bdb6d3081ad2d9e7d0aa91eff8d581c2c7ad67ff2a8beef2702d364ee96d26f9a545dbe7df
-
SSDEEP
1536:ODEvk14CBaqkFO0yMl0YU7bl9jJ1O4x6oLmfvDJ7JmwStWQTvVMVwmupz1fUjird:OGOWnwl9jJ1Ohwk71JHStp8wmupz1fUe
Score
10/10
Malware Config
Extracted
Family
xworm
Version
2.2
C2
make-catherine.at.ply.gg:58138
Mutex
fEBZArVIp1WmVX9R
Attributes
-
install_file
WindowsServices.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
90056a1a1b544d5520733d0b75bd23afa0638b9b549fba1621bbcdd99927d5c5
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections