General
-
Target
bfdc5c21c63377c8cdcf45538bf67c072f238f43d26d70c032988cf53e73e202.exe
-
Size
33KB
-
MD5
ec88c6775e02aa43155ae71081c94322
-
SHA1
348cca6e9052caec7d158cb146681887634609fc
-
SHA256
bfdc5c21c63377c8cdcf45538bf67c072f238f43d26d70c032988cf53e73e202
-
SHA512
699f9983fbae4ab3716d01963a89bf8596b550c6635e4d0a49bef2c6d0dac959f5e33bc6e6afad20bcf6011b1ec7489ece85744b5b539e69e93a5d3ad85749de
-
SSDEEP
384:Q10UMD9SszMJ11DcS/i8L7zZ3ZFsLcvSAOo6PRApkFTBLTsOZwpGN2v99Ikuis3v:EoD9vQB3Z3HJvlOPVF89j6OjhgbZr
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
192.168.1.133:4444
Mutex
s0UHVr0N3tbml9QZ
Attributes
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bfdc5c21c63377c8cdcf45538bf67c072f238f43d26d70c032988cf53e73e202.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections