General
-
Target
568a30ebf0f60d167bc39d6f21be65ad5ca25e025670d62f8f9d3d416b0c5289
-
Size
32KB
-
MD5
ffb63e6d90717cb96f62ed05a264ac0b
-
SHA1
417ab6ea81cad3b293fa3b99b7059e9f67388cac
-
SHA256
568a30ebf0f60d167bc39d6f21be65ad5ca25e025670d62f8f9d3d416b0c5289
-
SHA512
6a6d2a4ea4c58d16603e06f9b09c12dc70b4ad31d69e9ece4c3fb5f3ae9640dc21317f15f64e6c41d1a4a382333cd676e8d01d054db7f11c33bb278a174cc2c6
-
SSDEEP
768:lqJluIYWuThrt23/nJcF+9HjO/hm/3+M:IJ8ZW4rt2PnGF+9HjO/YWM
Score
10/10
Malware Config
Extracted
Family
xworm
C2
reference-roll.gl.at.ply.gg:65104
Mutex
0dr7M5Cde3nWdlRw
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
568a30ebf0f60d167bc39d6f21be65ad5ca25e025670d62f8f9d3d416b0c5289
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections