Overview

overview

10

Static

static

10

d8ababca58...fd.exe

windows7-x64

10

d8ababca58...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d8ababca584ba4feecd850a69aef231068e9e025d31afe75dbe681dbf5c2d5fd

  • Size

    17KB

  • MD5

    c6ef22d341307db526ba8f5fe2a00d12

  • SHA1

    915e592739f6561fa871d0754f12a3a3d50153ee

  • SHA256

    d8ababca584ba4feecd850a69aef231068e9e025d31afe75dbe681dbf5c2d5fd

  • SHA512

    5b34ff33b0c42e0b6fd3eeeeca7accf44b2b4bd71b834a047fcccb321413b046b93db335da6c4b626fae352ff40e6219aa1adcce871f80dd0a06d59ff1340bd0

  • SSDEEP

    384:4M1T+Xh/PhW0BFsn7SHh3rZwtwY9YaOAlH:4MqxP00BFjrY9YAlH

Score
10/10
nworm

Malware Config

Extracted

Family

nworm

Version

v0.3.8

C2

win32update.duckdns.org:5553

xmrdjo.duckdns.org:5553
Mutex

4f9c371b

Signatures

Files

  • d8ababca584ba4feecd850a69aef231068e9e025d31afe75dbe681dbf5c2d5fd
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections