Overview

overview

10

Static

static

10

Netflix Ch...er.exe

windows7-x64

10

Netflix Ch...er.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    21ab97f78c53a2c0ac2b3a8aca867344.bin

  • Size

    21KB

  • MD5

    21ab97f78c53a2c0ac2b3a8aca867344

  • SHA1

    90dd4f1d5e343a8597d3a53d025f9f447c41d995

  • SHA256

    9a88a28daf0ad1d2a979226a3dd7d0469d00b1eeb3878e4b620710752696e0f4

  • SHA512

    d2c62376d0af1936eb881952da029e20cc39aea277ab85d841de69291b7bc70a450651a6b2a001bf75421f734c5e7c443597453da884709446a40716f61fc9df

  • SSDEEP

    384:WQM6cQgW91AJKawZQ//I94c7OYDNNwJXu6akwKzFrObO2wmJsssfyeSisZ:WQM6cQggAJ9x/ISyNwu9kw0FrO0ysfmZ

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

spajkr.hopto.org:4444

Mutex

Q82MeHdjkeRNO9fd

aes.plain

Signatures

  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 21ab97f78c53a2c0ac2b3a8aca867344.bin
    .rar
  • Netflix Checker by spajkr/NetflixChecker.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Netflix Checker by spajkr/ProxyLive.txt