Overview

overview

10

Static

static

10

XClient.exe

windows7-x64

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    37KB

  • MD5

    6200d715d5204d549ec39c08d713aabf

  • SHA1

    d4cac9d1426df49af58c79653a8c384c2b25a845

  • SHA256

    9d04c5cf35734b93bbe7418c56505c76b90b0d14779a60ba0c3446a46f1c384a

  • SHA512

    24beae7d465d99fa581b956ed63c4d4efc33f93d137d83a8c397b32314a45ef6342ecb293dc331ffbb434218d9e9364ab633ba620440454434f7f4d53499e06a

  • SSDEEP

    768:i18PCPlb/Y9feLHL9/X+6ajF5PO9036GOMhuICVbHJ:URPRYWLHLtXWFY9036GOM7YJ

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

an-encoding.at.ply.gg:45586

Mutex

mQGotffBpIU16Bh8

Attributes
  • install_file

    system32.exe

aes.plain

Signatures

  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections