General
-
Target
5023bc998fa00427629fe99f21f8548b66ea3a36c38dab80e37ed08f4574c409N.exe
-
Size
75KB
-
MD5
d82d609d941466764cbeae3ef647c470
-
SHA1
12bd723e0ad949b401c64e82eeabad0796c05f1f
-
SHA256
5023bc998fa00427629fe99f21f8548b66ea3a36c38dab80e37ed08f4574c409
-
SHA512
d085a4c4d97d659104048dbd55c0c35a4b96749ea09b3a843c29b9738197452e1c2245828dc7cb3b20c96035c1ae6181727671418e4eee00e11e30f7c7595103
-
SSDEEP
1536:WQvlvzEfcn5PF6vWs6aq69eq9bC29104DTcp7i600xPCOMQln84l:WovIfk6OYRbCaSacl4OMul
Score
10/10
Malware Config
Extracted
Family
xworm
C2
25.ip.gl.ply.gg:8258
Attributes
-
Install_directory
%AppData%
-
install_file
svchost.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5023bc998fa00427629fe99f21f8548b66ea3a36c38dab80e37ed08f4574c409N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections