General
-
Target
1456874529dc30f09926a16774b16bbbc9d883e09d780e071a78b8f32edfaa5d
-
Size
51KB
-
MD5
786ca13c728d2be9656c9808006cff4a
-
SHA1
df4445132e799dbb2cc203697c8ac0b547f06cb5
-
SHA256
1456874529dc30f09926a16774b16bbbc9d883e09d780e071a78b8f32edfaa5d
-
SHA512
ee045dfcb010d8144cf92b7ff816be591389584d794f0f3be722beef61a9e3c61267814ea24278f80a1ade9483649c08639e67a72137e695152db5df640f4428
-
SSDEEP
1536:mtbuCiL0WXvvg1FI9AY6vOw/F4+MUcyKn:mt/iL5vvg1FI9AhOwq+MUYn
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
23.ip.gl.ply.gg:7728
Mutex
MSa5AIf8m9cGispj
Attributes
-
Install_directory
%Userprofile%
-
install_file
XClient.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1456874529dc30f09926a16774b16bbbc9d883e09d780e071a78b8f32edfaa5d
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections