General
-
Target
0ee209155e17689bea70904f4cb4f546e01ae1824cc7f0f0a29d5c5a8c69d101
-
Size
67KB
-
MD5
df327ace413f3d7d7096d3691436c8b2
-
SHA1
01062e8125a785b3a345dda2129586f5a6d48581
-
SHA256
0ee209155e17689bea70904f4cb4f546e01ae1824cc7f0f0a29d5c5a8c69d101
-
SHA512
ae24fcaf06217094563b5c8a096259a6afd760c504ea9075419173b0f571cbd5d96afccd737eed9efa5de2e72e8118dfbd379d5e4ca3814a8d47c68a84b00a91
-
SSDEEP
1536:CQKvpn+V+eAIDIjci+JCDNB1Hbo3BjT6hMmOwmNsSkA:Ipfmmci+01Hbo3tmOwm+5A
Score
10/10
Malware Config
Extracted
Family
xworm
C2
price-slow.gl.at.ply.gg:28067
Attributes
-
Install_directory
%AppData%
-
install_file
XClient.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0ee209155e17689bea70904f4cb4f546e01ae1824cc7f0f0a29d5c5a8c69d101
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections