General
-
Target
a8efe52b418ecb0711b865722ff71ef6a0956da7e2dbc8e059aba752fb350143
-
Size
71KB
-
MD5
76c274512d42c97ad1c7181299fb1a3c
-
SHA1
b9e4f019a2c0ce102649611da720ac9e0fcf01bd
-
SHA256
a8efe52b418ecb0711b865722ff71ef6a0956da7e2dbc8e059aba752fb350143
-
SHA512
814bd6b96def22c403200ee52ee4507b6e4fb44c45c4efe22aca5154a329577239c38381f3298c2ac0f6e6a45bf486575c017224f8eb778803e4919be2dc8b40
-
SSDEEP
1536:leyqGYvrCtLnDxFnHDMvbKjMJYgOVt6nxOUnPdud0:/MCrNMvbK7xwxOUnYd0
Score
10/10
Malware Config
Extracted
Family
xworm
C2
gololosd.ddns.net:3210
Attributes
-
Install_directory
%AppData%
-
install_file
Chrome.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a8efe52b418ecb0711b865722ff71ef6a0956da7e2dbc8e059aba752fb350143
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections