General
-
Target
XCreelient.exe
-
Size
81KB
-
MD5
29bcc400c8928b4f03b52c0c4a669502
-
SHA1
292a139cd4b7c7f71086dd7be0daae41c1c71b48
-
SHA256
933986104f7657805b12aaa019458774f43713a0bb5709f1c0f317645bbe9032
-
SHA512
c3006da29c31cbeedd3738d3007cde4f0236e6faa0a00e6023e971dca0d9d019d7a006e1eb4f2acddb44a7f0aa04f1c7248f9389ff386a19051c57ca5fa60f21
-
SSDEEP
1536:L10BYIUYfOQBCtk9jRp9WHImWqbll3Uggkc4+A69MMQOg3Dj9b:LCBvUY/Ctk9jRrCbll3CPTMMQO+Dpb
Score
10/10
Malware Config
Extracted
Family
xworm
C2
turn-cement.gl.at.ply.gg:26362
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XCreelient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections