General
-
Target
43f826cb9f5c29591a43b7cc139b5c9cbbb53dff04c810b8f42da228964109b9
-
Size
38KB
-
MD5
3a64599fb1a8f51b8799eb8c39ab6de5
-
SHA1
442802dea4b41d05d7683d53754b5f00422036c4
-
SHA256
43f826cb9f5c29591a43b7cc139b5c9cbbb53dff04c810b8f42da228964109b9
-
SHA512
f733c0b53818b35a2f6aa101e9c274f665f9c78639d3f6d1d587219f802e7954beeaa6ae26188bfa1310b2f674446669f90d392bb7e8b1b57f5db636ef7a5cf5
-
SSDEEP
768:gIJcR+hwfgTAAjcCB1FO9aYOphfWng57v:fO7g8AjcCDFO9aYOp9B5z
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.0
C2
usa-dee.gl.at.ply.gg:37931
Mutex
T0y7WewuYNXtpWnZ
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
43f826cb9f5c29591a43b7cc139b5c9cbbb53dff04c810b8f42da228964109b9
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections