General
-
Target
XClient.exe
-
Size
68KB
-
MD5
7211f73e408ec41e11fdbb85880d8c1e
-
SHA1
6a8a1453153de5df5ce622cad3e0a174082763e5
-
SHA256
57b3c6691f0c7cd0b001b6a2b1ff318cedc586ce042641b46befe3f4e5b9c765
-
SHA512
de3d0978acfd451c060ebd4f9cb1591c12d554048b21dd2cbf9dbfc4391a44337abf800e44b953726168ad5389536d30d4ec19c38603df24d695ec90b3403aa9
-
SSDEEP
1536:43JtaTWQlhe+u91ngXJseUcDw+bHab7gl56j3Om7KRv:45taTWqhe7TngXGDcDw+bHavglA3Om7S
Score
10/10
Malware Config
Extracted
Family
xworm
C2
26.51.16.201:45737
Attributes
-
install_file
client.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections