General
-
Target
максим лох.exe
-
Size
41KB
-
MD5
0011dad9c1a4c80a85c6ec8b6a3791ec
-
SHA1
6c9e04a11aadfad3d5209fef124d85d0a7649ff2
-
SHA256
9f096de5b225151543a66faa6ca95dc772c0167b7b75bf2dbec2c2ca64874491
-
SHA512
f60dcf603907e3291e21378c5f413a0623358b30be05e05e6f55c1d025585a7959513d1c811fa68844fc7f7575fc6eeb99d8d695b0c1f452cd77f349b1e92cd3
-
SSDEEP
768:NBFMiKhUsY5OEGsWyH6peAuwKFjHvdhtF5PG9+lOwh63EmXK:29hikvRya0AulzvdTFI9+lOws9XK
Score
10/10
Malware Config
Extracted
Family
xworm
Version
5.0
C2
20.ip.gl.ply.gg:25905
pics-facial.gl.at.ply.gg:25905
Mutex
DbJdoPQAuynKdINr
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
aes.plain
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
максим лох.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections