General
-
Target
Newfolder.rar
-
Size
46.9MB
-
Sample
250308-w37bda1kz7
-
MD5
b5e8be6130a74993d74c5544854e28e5
-
SHA1
fd3658985744f044429956d6e7a4bb31170945d2
-
SHA256
8226e9367565a7455d21a1ae8249766acb49949e5353abe3009a68b62cdc504c
-
SHA512
c972567539ef61b0674b85b59220965a4d615b553499e409a55a0e8ef30418cb10f2187e4e525e6267afadc0bee6d79ffb4dd277dbd05be441561c2a5ab8ad5d
-
SSDEEP
786432:xs35cJJfXpamVV8f/IDrIKKBfUTbBB7MoiWq0UuX24lrEJ6OqnchsW7DkseJAQ0P:O35cPfpamVJxEUTbf7Mo+7uXBG6Oqncx
Malware Config
Extracted
xworm
3.0
147.185.221.26:3333
x5HokpexeOtoNIFY
-
Install_directory
%AppData%
-
install_file
USB.exe
Targets
-
-
Target
New folder/FastColoredTextBox.dll
-
Size
333KB
-
MD5
b746707265772b362c0ba18d8d630061
-
SHA1
4b185e5f68c00bef441adb737d0955646d4e569a
-
SHA256
3701b19ccdac79b880b197756a972027e2ac609ebed36753bd989367ea4ef519
-
SHA512
fd67f6c55940509e8060da53693cb5fbac574eb1e79d5bd8f9bbd43edbd05f68d5f73994798a0eed676d3e583e1c6cde608b54c03604b3818520fa18ad19aec8
-
SSDEEP
6144:4FErOIif3RzSHh+20lXs1TzCeBcQeDbNlz7:eEeR52bmeh0n
Score1/10 -
-
-
Target
New folder/Fixer.bat
-
Size
122B
-
MD5
2dabc46ce85aaff29f22cd74ec074f86
-
SHA1
208ae3e48d67b94cc8be7bbfd9341d373fa8a730
-
SHA256
a11703fd47d16020fa099a95bb4e46247d32cf8821dc1826e77a971cdd3c4c55
-
SHA512
6a50b525bc5d8eb008b1b0d704f9942f72f1413e65751e3de83d2e16ef3cf02ef171b9da3fff0d2d92a81daac7f61b379fcf7a393f46e914435f6261965a53b3
Score1/10 -
-
-
Target
New folder/GMap.NET.Core.dll
-
Size
2.9MB
-
MD5
819352ea9e832d24fc4cebb2757a462b
-
SHA1
aba7e1b29bdcd0c5a307087b55c2ec0c7ca81f11
-
SHA256
58c755fcfc65cddea561023d736e8991f0ad69da5e1378dea59e98c5db901b86
-
SHA512
6a5b0e1553616ea29ec72c12072ae05bdd709468a173e8adbdfe391b072c001ecacb3dd879845f8d599c6152eca2530cdaa2c069b1f94294f778158eaaebe45a
-
SSDEEP
49152:ot12Gb/hz7ZsK9qY5uyUW57VC4IB1+fXhQ1hyCzMw/22fSg7gjxhUE/nbTC0xemh:oLbteKb57W1+PhQ1HM1gmJ/SZmh
Score1/10 -
-
-
Target
New folder/GMap.NET.WindowsForms.dll
-
Size
147KB
-
MD5
32a8742009ffdfd68b46fe8fd4794386
-
SHA1
de18190d77ae094b03d357abfa4a465058cd54e3
-
SHA256
741e1a8f05863856a25d101bd35bf97cba0b637f0c04ecb432c1d85a78ef1365
-
SHA512
22418d5e887a6022abe8a7cbb0b6917a7478d468d211eecd03a95b8fb6452fc59db5178573e25d5d449968ead26bb0b2bfbfada7043c9a7a1796baca5235a82b
-
SSDEEP
3072:k1GmgYqIY/0YSDBRGlDUqL63budipxj64m8HWYh3vHbFwMhLJSb+:lIO6rGloqL63qW62lJ
Score1/10 -
-
-
Target
New folder/IconExtractor.dll
-
Size
10KB
-
MD5
640d8ffa779c6dd5252a262e440c66c0
-
SHA1
3252d8a70a18d5d4e0cc84791d587dd12a394c2a
-
SHA256
440912d85d2f98bb4f508ab82847067c18e1e15be0d8ecdcff0cc19327527fc2
-
SHA512
e12084f87bd46010aded22be30e902c5269a6f6bc88286d3bef17c71d070b17beada0fe9e691a2b2f76202b5f9265329f6444575f89aff8551c486eafe4d5f32
-
SSDEEP
192:7f77J4cGYyfQknxLvIgyLY5xJeU5pPpZlEAs:HS2yINgyLYLJR5wl
Score1/10 -
-
-
Target
New folder/NAudio.dll
-
Size
502KB
-
MD5
3b87d1363a45ce9368e9baec32c69466
-
SHA1
70a9f4df01d17060ec17df9528fca7026cc42935
-
SHA256
81b3f1dc3f1eac9762b8a292751a44b64b87d0d4c3982debfdd2621012186451
-
SHA512
1f07d3b041763b4bc31f6bd7b181deb8d34ff66ec666193932ffc460371adbcd4451483a99009b9b0b71f3864ed5c15c6c3b3777fabeb76f9918c726c35eb7d7
-
SSDEEP
6144:96/i10SZtfzWctj98vZcE0wmLlaIZs5eku2sX2hrjAzvgmXa6W9FwsT9idwktQZG:9yrSKMJR9aGs55T1X9Fwspi2tGpmS
Score1/10 -
-
-
Target
New folder/Plugins/ActiveWindows.dll
-
Size
14KB
-
MD5
d45c2a95c5670074713be9e669e4d610
-
SHA1
96d26829b4ef8156eb5906f84535866f7f859203
-
SHA256
4263c50674c6ab64a9b5a1ad5e301628baa975e4c919d0c7767ec39adf4cbfe0
-
SHA512
e15a8fc7fa81ad1a6446db7c18494b2e4c15ab28844dbb77deadcae72064ed6bd6e08fe59604c27bd4e44ed059c1a424f322a753293d76bd574262aa31b9e3ea
-
SSDEEP
384:7qIGejCUccJeGCJWM2YFegdT8Ft0Y7XZ3W6DMz:7qIGeXcWrCJ+EtYZ3W6Du
Score1/10 -
-
-
Target
New folder/Plugins/All-In-One.dll
-
Size
4.8MB
-
MD5
f21e73b79f9aec821c976b4fbae7225c
-
SHA1
7be974156ad16f23f4b91b47c380f8c3422a9863
-
SHA256
2987ef4a83e2c44a9abe57cdd9a4bc2b8cbaa01f6835c45cfce180b4d978982c
-
SHA512
476bdb0c6ac8703e467c51b90b23e45ab72a2e81652e3106732b69d9d299c277c0f9d308117cd338089d3578ebe73d12559b4300fda24d32ca7f1991827aa8df
-
SSDEEP
98304:pl19F9QORkChiDC9OtH7c2iwGxIvPBOw0JefVfQ2a5cFd4KssODtd:J9FPRkC8C9OH7c2ilInz0kfVo26Wsd
Score1/10 -
-
-
Target
New folder/Plugins/Chat.dll
-
Size
18KB
-
MD5
c1a27e18603cdd587ae47e0e4b71c5f1
-
SHA1
9a8a3b938c0e4c79687750dbbd459ff3879c4c2f
-
SHA256
eef8fb30e32b48e1480a6131de34436c0a8efafcf807856fcebd618661b7a6c6
-
SHA512
53467107f6f0443854879d61135d73e04e387f9cc5e6ccd277732d582095eea9268d5ad6be1a8502421109ba77d86bb20d42efbe67b97d309b4c6c215b6575b9
-
SSDEEP
384:KeUeLD8aDbXCtSeEd3uq7uQZRHUrwTKvt0GIKoIkfiUWGfZ:MkbCtSeE5uq7uQYr0HIkfiX6
Score1/10 -
-
-
Target
New folder/Plugins/Clipboard.dll
-
Size
14KB
-
MD5
b23bb3be1718e1aeefc3e822119692f9
-
SHA1
d4dabddf9b9d3f0b2adb86a3799f1cf9ec614d48
-
SHA256
5a70530748decb0c81fb9c912fd3d75d7d493fd67675bb7dbfe141c3fda15587
-
SHA512
d66697d97146148978aa5f46cc14232230e553842601cc0e3b0eaaf86f21e91f907153dc710405df7d1dc32d8120134886b29ec164738cef0fa7a827a2ae90a1
-
SSDEEP
192:KkAXyVpJlyIxlioHESRJ29u+6ZWSYASO3tOXXgNTen1i9iY6IW1mX/60/qAqEM7R:KkXVpuoHpMDfAR98STe1oi2X/6kMrwU
Score1/10 -
-
-
Target
New folder/Plugins/FileManager.dll
-
Size
27KB
-
MD5
d2c7a574a9b9df92366a981761d494ba
-
SHA1
d7d6c4674eac54102e61331fc116ac5abebf42ee
-
SHA256
f13aa0515a65a4701269a57183884846417688d1476c7252291ac5bf7149746b
-
SHA512
a876da49f048fffb0dc522d4f7471b1c1076fda327d7ad0282162b749375dc13797300f51ccb0b5d2327d6b6f6e0f75f3204a83a4a384108f1e34b7a179b0ce0
-
SSDEEP
384:tp4K215dISbc/TY0mN1PGDQXSBJVYol/tF37enOAkxqb8cq/hsutzgk/b7oBxkSE:h21vWk0yPGsXAr7dtRKPb8V3emjC0b
Score1/10 -
-
-
Target
New folder/Plugins/FileSeacher.dll
-
Size
478KB
-
MD5
21e5acae055bddd2ad584271d77f881e
-
SHA1
df3b8db334e5bce0597cea77a4770fad8d7db6fb
-
SHA256
557a215cec1a3df37da8a6798354e79a3a70f548f7955cfa43a2d75e1d037053
-
SHA512
52896aabc03595320370a1318749e899b451020f74cedc511b6daa618908bcaa4aee7d0b808a4df6721e2c1a4f93e2f84cea00179f0c7149dccbe6f155eb3dab
-
SSDEEP
6144:OPv5T5fIIC8W8XqeGtSV41QJDsTDDh0Yhe6dwxLV/vuhgS0mOdwcG:0nfIICLlS4Ys50ie6CfigSji
Score1/10 -
-
-
Target
New folder/Plugins/HRDP.dll
-
Size
1.7MB
-
MD5
e8130166c9f0919f0c94f989898a26b2
-
SHA1
3611474d473bad7474f8bea8e3277652d72cd3b4
-
SHA256
7d4b0d5cc5f09f26183aa34468b78b083ddd895802a41273583f45202a9a618e
-
SHA512
a444b8945dec63fa64452408cb0f3f95d5b60330b74f927df7e16feedad08862d164381a137bf2a14c42af5fe9eaa6813c2f8d1d44fcbe570eec3b7cecf12a8d
-
SSDEEP
24576:UrKxoVT2iXc+IZ++6WiaTAsN/3ebTvK+63CWH8iA/iD2hgPjcC8SVdKumYr7:RHZ5pdqYH8ia6GcKuR7
Score1/10 -
-
-
Target
New folder/Plugins/HVNC.dll
-
Size
57KB
-
MD5
cb5c8cd73ed161125e46bb455fe468b5
-
SHA1
2f5852f549262e0a5ee8e385c336e3d9860e3441
-
SHA256
3a17d1922ada241def8a14f9ac7a7789bf2b5dd4cc9045ed08f28546982c233d
-
SHA512
e6f26e61e8c75fa18d7b6e8800b07104f1314cd312d85b3d3d0db7f8d482bc4582a7237643d24308e0b7ccb5d779b666be6216b3364e6d0d7ee9aeeaa40394bd
-
SSDEEP
1536:uth/ecTkz12BWR7mmt+0d7tzGxh23tnc2/:2h/ejz12BWR78M7tCxh2hz/
Score1/10 -
-
-
Target
New folder/Plugins/Informations.dll
-
Size
22KB
-
MD5
92ba1499b2547f0e38e26360f94101af
-
SHA1
71b9ac23eca1c0f50517631cffe59ec1950147b3
-
SHA256
0452d60d658a43929bf2d5bc049e2c57c2d61f58b6444bab88834c870305dfdf
-
SHA512
1106d4386cda5fe98736138e0e6a01fb2e234700a9e5ed61e2b6a59cdfc82cf82dc2486488944ad009ad34fb3a04b9894bd52fea52968741350b09c7975d4d9c
-
SSDEEP
384:4nQf5APE80e6vkD7RQQpOJXWn3TmoNhxJNSOFD4rfZ41:4nQfGPEOD7vcJKj3NSDZQ
Score1/10 -
-
-
Target
New folder/Plugins/Keylogger.dll
-
Size
17KB
-
MD5
666290af0aade9cf9f377c5fdce9cba3
-
SHA1
d981466e4838b2bac54edf53548169124bdea145
-
SHA256
c2dc7f27304ad0b1a726b5784b030207b93765a8986c4a4f3999733097a4d43e
-
SHA512
23ccd8c1ea776a70637dad70ccea3f435d99c7465fe99a6d4f8f726f6c320081f5d7327f654bc0f7abf0389b6b95c55809f474c52ca2e3898e99efbe454e77d9
-
SSDEEP
192:tLCuLDdyxqvzfZ3ium13gyWacxv8ilNwOHLnq4UP1XPeDN6IW1Y6Up90KWi8Jlb0:EuDdYe0umJ6xfwEO4UNWD8Upt+5h6V
Score1/10 -