General
-
Target
9aa2c0200a37d88007587f6202c072996ad1624ced1a91fddef92e6402adff34
-
Size
46KB
-
MD5
ca4294fe69f3e85206901c39ebafbce9
-
SHA1
376c0cecccd707eb951917480e09370f654fe873
-
SHA256
9aa2c0200a37d88007587f6202c072996ad1624ced1a91fddef92e6402adff34
-
SHA512
4f5648f2a13156834cd470193337c3a653d0e289442a3280c92edde8e2f13fd0a5f756f060fb152a3a6b50126e0b2e30f9670647bb04f6a6dae7b5c2655d4323
-
SSDEEP
768:xvnAE7g4Evk14CBaqkFORKDLsDWxizMGsUTjwTn2lJvXtuf4vvOQ+Ll9jBRPQhLs:tDEvk14CBaqkFO0yMl03HU7bl9jw1OLN
Score
10/10
Malware Config
Extracted
Family
xworm
Version
2.2
C2
make-catherine.at.ply.gg:58138
Mutex
9ekpYP4ryPBWFxW3
Attributes
-
install_file
WindowsServices.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9aa2c0200a37d88007587f6202c072996ad1624ced1a91fddef92e6402adff34
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections