General
-
Target
test.exe
-
Size
39KB
-
MD5
17fdd7d14ada5d6412c127c5e40a8375
-
SHA1
f32561e67e08a41f4e01d9619409e37544a705c9
-
SHA256
53ca613e60f8767f9a7a37141455df6d5a7e9f7ccd4bbef206359c110201a49d
-
SHA512
726124f87a0967b7a7e021eee08325304d0fb68b3a80bf0b3c824959cf053401b30827cc9182e97e3a5a875d18cb82e9baba7150f22f1f3fdbe828297ef613e8
-
SSDEEP
768:2T7JKHWcEbDvghvq3zJ+uap/5fzbN2WzFPw9Us2dOphMuA4y:K7JKHWcqzLiFN2iFY9UdOpWh4y
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
authors-reflections.gl.at.ply.gg:19578
Mutex
46t5UK92cNzRMMIw
Attributes
-
Install_directory
%AppData%
-
install_file
google.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
test.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections