General
-
Target
Test8.exe
-
Size
41KB
-
MD5
3feeb2ea7114f091ce579b554b699d36
-
SHA1
a6eb8ecd10e2829abd7ae58ab3a7d2e03f8e4b6e
-
SHA256
d8fcbac7d21e5a2d2b82e5d5fad895b6d692e1549ba7eb06c3f8099492a4aa40
-
SHA512
6e7db29dcab2d7758b5da6f94fea12994a0e61f47b87db57663653a53a6301124221037674adfc8a5a7623bf6b6cf88967ace384f084037dbbe83eca49bc6ede
-
SSDEEP
768:hmrJDweBDuOkScrbsN/x6emCAr43MxfJF5Pa9p+O6iOwh93/ibw:h0DwewicrbsN/YZRrNRF49IO6iOwnaE
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
series-ate.gl.at.ply.gg:62459
Mutex
k92683p7ltkYlhvq
Attributes
-
Install_directory
%Userprofile%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Test8.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections