Overview

overview

10

Static

static

10

1520-118-0...ry.exe

windows7-x64

1520-118-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1520-118-0x0000000001360000-0x0000000001388000-memory.dmp

  • Size

    160KB

  • MD5

    aa1d6e8bae84ec0758800031178649ad

  • SHA1

    24fc890c02ff5582679ffa7f93b519906ee622c3

  • SHA256

    387fda07038d51438c358e3018acc38f9ad0bd578db1d7d306c94df8312b2e5d

  • SHA512

    19e41bca738bc805785b133319b301cb7c1881f2266ab212b9d0415b63f17404153a968058dd6d2350abdc8284a0e74e264fb03d949d4746ce136524e7cdfea5

  • SSDEEP

    3072:/FU9yyO9tBz65/M6If+3Js+3JFkKeTno:NU9UxBt25

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

option-trading.at.ply.gg:19729

Mutex

CvxI0GRq00C66HVd

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1520-118-0x0000000001360000-0x0000000001388000-memory.dmp
    .exe windows x86


    Headers

    Sections