nworm | 0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

0f0b4d98f4...68.exe

windows7_x64

0f0b4d98f4...68.exe

windows10_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268.exe

Resource

win7-en-20211208

nworm downloader worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268.exe

Resource

win10-en-20211208

nworm downloader worm

windows10_x64

0 signatures

0 seconds

General

Target

0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268.bin
Size

49KB
MD5

ef5575dc5a9673885a93816fec5752e3
SHA1

981b40105ff0b9d1deafae85517efb2bc03c54cc
SHA256

0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268
SHA512

2979efab620d252ce552ea376878f807860030f33aa1c2265eb24b3ec7e8ba2f7190a61a49655b8ed59e5be583edcf257fccf9bbdb423e6e5d64afe288bbb5a6
SSDEEP

768:dADvd+HOpsf/9s6ZKka9bCBG4h/7dkTjK0p7UM/AdhCE:GEla9bCd52T+0OeATCE

Score

10^/10

nworm

Malware Config

Extracted

Family

nworm

Version

v0.3.8

C2

google8.ddns.net:1999

Mutex

52889f08

Signatures

Nworm family
nworm

Files

0f0b4d98f4b41948f43060d83b12cf9c995f4a425f376c8ae4e5836500df6268.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy