Overview

overview

10

Static

static

10

979d8beb1c...b2.exe

windows7-x64

10

979d8beb1c...b2.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1cbca4b629db1d4f018c34ef73a5e30b.bin

  • Size

    34KB

  • MD5

    013506d3511ee8426da266fa2d4691e3

  • SHA1

    71197a39c40602c7891141e95496ca924922da8b

  • SHA256

    7512fd1a7fb39438c9ff78c29551c79b08995127410098bad8da3e1a4f22b985

  • SHA512

    ada83b9aca83fda4d598d5071cd3c644388a7affb2b09310db82742c2f3bf27aabb4c749c59cb20cca5143aaf094f2185d8e5ba58455d4bae5166197947c1e77

  • SSDEEP

    768:cPOkR4/XNoRMeRS6IUgwgKw7w3NzIN+knPd24fEQzDmQQwy:4tmr/66KJ9sVPd2umL

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

103.114.106.183:47074

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1cbca4b629db1d4f018c34ef73a5e30b.bin
    .zip

    Password: infected

  • 979d8beb1cdb03b48e13beb8034136aeb2899bf437ce1483cff67976a0706db2.exe
    .exe windows:4 windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections