Overview

overview

10

Static

static

10

bLYU.exe

windows7-x64

10

bLYU.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bLYU.exe

  • Size

    56KB

  • MD5

    99ac1041885d76a382b9a79e8c6cfe81

  • SHA1

    1e32ee6a17e9526d41832177ed2d765fac9b8753

  • SHA256

    001e2be0b431a33fbc7d0eb1fabd07d5c1cdba26ebef12e85b2a7ba58bdd995c

  • SHA512

    55158c15a94735bf2ad80d70ce255c55d5a08749ae0596229f7e27878a22add8c191d8e69c866f6d98270b3332ee8c3cde60ee7cfdc502dcd38c74fe844ce754

  • SSDEEP

    768:cFhVBuPWuUzEbOszEaN9B+7Bpe3GnAZQgS1m2LRRqsEbGlYFer7wiJncDqjP619s:nbOsQzBQ3GQQZ1TffEbGyC7wkn2O7nV

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.0

C2

18.231.156.119:7000

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bLYU.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections