General
-
Target
f6b66de58a074f12a5e25b27f868701071124e088415c7ba44f81b41aa57f752.exe
-
Size
47KB
-
MD5
68ead50c6780f8cfcd34fc1c3d9d998a
-
SHA1
071b72b8496fa68983cb77b319de6c93d1c7929a
-
SHA256
f6b66de58a074f12a5e25b27f868701071124e088415c7ba44f81b41aa57f752
-
SHA512
9b08430d93ee0296e338d3f59b0a57c13a4f0faf2b1f4d10f6cc602843569d130dcaeb3929dce21ce00cf13b6ffb9b7de42bc3ac177fd6f029545240e2c4464c
-
SSDEEP
768:aBoVSTAPW9jllp0XMtd70hq30gzbGYxIXDZVpNf3SOwht7a1ehVY:eHL9jldFwszbGYuTpIOwL0EY
Score
10/10
Malware Config
Extracted
Family
xworm
Version
3.0
C2
16.ip.gl.ply.gg:41909
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f6b66de58a074f12a5e25b27f868701071124e088415c7ba44f81b41aa57f752.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections