Overview

overview

10

Static

static

10

bKWC.exe

windows7-x64

10

bKWC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    bKWC.exe

  • Size

    56KB

  • MD5

    12b9fd9acbc1ad0d11ea58a6930f119c

  • SHA1

    87bb96efa520bdeea7cbee4559336610bc74d4f5

  • SHA256

    83b91f098157b5ba0147972c1d5c4d751d66fc59d7645e2e643ce863101f6d52

  • SHA512

    36fe4456888c98f277086984d3145c9d588fffebe4f781c40d6a8de763817dfdf6c2662ce406839f4b0511bf934d6a6091fb1f25465fe262590f5c6d30b400d6

  • SSDEEP

    768:yq2y5DshJuRXXjnfdD5ZjKo0o/aptgEbyQwFMCDaYJ0Y5sALNApOoghJIFlJhZxE:lM2HjzZuoPaxbyQwFX+uGpOXv4/BK

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

serverwindor.duckdns.org:5000

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bKWC.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections