Overview

overview

10

Static

static

10

60b96558de...d7.exe

windows7-x64

10

60b96558de...d7.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    60b96558de61115c638503dce1f7803dd3067a2c32258955e2fc8343985526d7

  • Size

    36KB

  • MD5

    ff66e65d96ead8f48dd29b15590f1f72

  • SHA1

    30294987866d36468702e7f81a9280c8c84944ff

  • SHA256

    60b96558de61115c638503dce1f7803dd3067a2c32258955e2fc8343985526d7

  • SHA512

    0c90108132e90b00f2cfd94a75aea0c489952a963365f0d45dc15f0fcddfc7fb669eccab80f75e1542525787ca459ecbe818ad899bb4a26f8b8ffa3af18c4e44

  • SSDEEP

    768:svmhIiWPNToqtFKZwqzIt1VaU/FPe9l1FO9hSqTo:svmCi0owq6HaSFW9lXO9LTo

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

51.89.158.83:7000

Mutex

Txo11Z2zxHCRUkqn

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 60b96558de61115c638503dce1f7803dd3067a2c32258955e2fc8343985526d7
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections