Overview

overview

10

Static

static

10

XWorm/Fixer.bat

windows10-1703-x64

1

XWorm/NAudio.dll

windows10-1703-x64

1

XWorm/Plug...ip.dll

windows10-1703-x64

1

XWorm/Plug...ws.dll

windows10-1703-x64

1

XWorm/Plug...ne.dll

windows10-1703-x64

1

XWorm/Plug...AC.dll

windows10-1703-x64

1

XWorm/Plug...OD.dll

windows10-1703-x64

1

XWorm/Plug...en.dll

windows10-1703-x64

1

XWorm/Plug...ks.dll

windows10-1703-x64

1

XWorm/Plugins/Bot.dll

windows10-1703-x64

1

XWorm/Plug...at.dll

windows10-1703-x64

1

XWorm/Plug...um.dll

windows10-1703-x64

1

XWorm/Plug...rd.dll

windows10-1703-x64

1

XWorm/Plug...er.dll

windows10-1703-x64

1

XWorm/Plug...ss.dll

windows10-1703-x64

1

XWorm/Plug...ts.dll

windows10-1703-x64

1

XWorm/Plug...ts.dll

windows10-1703-x64

1

XWorm/Plug...ns.dll

windows10-1703-x64

1

XWorm/Plug...WD.dll

windows10-1703-x64

1

XWorm/Plug...il.dll

windows10-1703-x64

1

XWorm/Plug...er.dll

windows10-1703-x64

1

XWorm/Tool...er.exe

windows10-1703-x64

1

XWorm/XHVNC.exe

windows10-1703-x64

1

XWorm/XWor...en.exe

windows10-1703-x64

1

XWorm/XWorm.exe

windows10-1703-x64

1

Analysis

  • max time kernel
    84s
  • max time network
    159s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    21-02-2023 08:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    XWorm/XWorm.exe

  • Size

    7.0MB

  • MD5

    2b27a14a26f2ed62e40d81360db33890

  • SHA1

    7ef6a70c2138725b9712652e24bed413a87c5687

  • SHA256

    33cdcb6c4a7a05df5202505883ca70fabcf466b53ca73a44e050b85873f654fb

  • SHA512

    a94376a06060a88bdb946d031c0b43eb490e89d85891d86f1e1c5589936910cb50a26515f43a51bd9f3a95a19ed0df52a8245e3cd34be9639b0a032f7beb1afe

  • SSDEEP

    98304:6qbijWqZ2b30FOWLqr8TTTTTTtPfPQVKw+WLqgBGuf2e2b542q:6qbPjbkFOWurAfPNWugBG1V42

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\XWorm\XWorm.exe
    "C:\Users\Admin\AppData\Local\Temp\XWorm\XWorm.exe"
    1⤵
      PID:2272

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2272-119-0x0000000000330000-0x0000000000A42000-memory.dmp
      Filesize

      7.1MB

      Download
    • memory/2272-120-0x0000000005210000-0x00000000052AC000-memory.dmp
      Filesize

      624KB

      Download
    • memory/2272-121-0x00000000057C0000-0x0000000005CBE000-memory.dmp
      Filesize

      5.0MB

      Download
    • memory/2272-122-0x0000000005360000-0x00000000053F2000-memory.dmp
      Filesize

      584KB

      Download
    • memory/2272-123-0x0000000005300000-0x000000000530A000-memory.dmp
      Filesize

      40KB

      Download
    • memory/2272-124-0x0000000005570000-0x00000000055C6000-memory.dmp
      Filesize

      344KB

      Download
    • memory/2272-125-0x0000000005560000-0x0000000005570000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2272-126-0x00000000090D0000-0x0000000009136000-memory.dmp
      Filesize

      408KB

      Download
    • memory/2272-127-0x0000000005560000-0x0000000005570000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2272-128-0x0000000005560000-0x0000000005570000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2272-129-0x0000000005560000-0x0000000005570000-memory.dmp
      Filesize

      64KB

      Download