General
-
Target
3c38b10548278b4d129262cdbbbf60f10ed110e60eb8c010899b5340cc85a0d4N
-
Size
38KB
-
MD5
a08e900e1a915df7df77ca7e183ccf30
-
SHA1
d3eb32085be15c416c426e94541aa016667dcaa4
-
SHA256
3c38b10548278b4d129262cdbbbf60f10ed110e60eb8c010899b5340cc85a0d4
-
SHA512
ac13e261a000b43e1de9fcb52d5d2affb0c0915fbdfe85badebe3721c560f3906a9aacaaf0fc8c9ac13e040d0253c4d663ea825e126604cf236f79a9d185ec82
-
SSDEEP
768:W6UBEM+TFOvdpjHcz+lT0VTFA9sR/Owhr419:jUBEM+T0bjHrQJFA9sROwVa9
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
127.0.0.1:65362
common-congratulations.gl.at.ply.gg:65362
Mutex
8cENiReHTnGokP1W
Attributes
-
Install_directory
%Userprofile%
-
install_file
Microsoft Edge.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3c38b10548278b4d129262cdbbbf60f10ed110e60eb8c010899b5340cc85a0d4N
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections