General
-
Target
98bb8993b66cdc1bab7ea0c412a867bc5ad074c22ce5ac22d2bc96855ca1829f.exe
-
Size
70KB
-
MD5
4f99e5e92e4eb0d0fa2aa397d5860ce2
-
SHA1
4a22ad6d61ec0430f49addafbc10f0124d125c40
-
SHA256
98bb8993b66cdc1bab7ea0c412a867bc5ad074c22ce5ac22d2bc96855ca1829f
-
SHA512
b4e1002a1883f2849b89b0bb818b49d3a56e69ccb65d27cd571611fb7eac86dd0e3a14eb33249f629c3beb7f3bab0e39d968e67db44856abb061fa594610fc54
-
SSDEEP
1536:uhMvu8rbNS8Z5V4Dt9Brzp1IbRNoMOrk6gkVxOAzPFD1uPb:RwACXr0bRvoxOI9Dwj
Score
10/10
Malware Config
Extracted
Family
xworm
C2
147.185.221.18:14512
Attributes
-
Install_directory
%AppData%
-
install_file
SystemUser.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
98bb8993b66cdc1bab7ea0c412a867bc5ad074c22ce5ac22d2bc96855ca1829f.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections