Overview

overview

10

Static

static

10

2716-15-0x...ry.exe

windows7-x64

2716-15-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2716-15-0x0000000001370000-0x000000000138E000-memory.dmp

  • Size

    120KB

  • MD5

    02dcee0e1bc347ae6ce50c679b685b3b

  • SHA1

    2e30e358cbf907b03a7e4cf45fa96bc6f26407e5

  • SHA256

    5be03731aacbdd78c7a7a3e62a7e8399dcd5916cde4bb0c0a4db621d7584fc62

  • SHA512

    72167ad4d3c3773a8dc9bc14e804dbd4cc37cf881e8f331035d19d0baab4f716de92a91fae4ed1a05c1805e4b114e1c6a5a4734816dec07adb7fcafd93710094

  • SSDEEP

    1536:C9imNPnMKTCUbqMjTTa/2w8wiV7TXxfQtnUiApKq:CoMM8CeqpcVPXxYtnSJ

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

194.ip.ply.gg:58713

Mutex

tRgdVZ5X7D1u4VgL

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2716-15-0x0000000001370000-0x000000000138E000-memory.dmp
    .exe windows:4 windows x86


    Headers

    Sections