Overview

overview

10

Static

static

10

dd38b89961...33.exe

windows7-x64

10

dd38b89961...33.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dd38b89961f68c5aa0ca5d2deca8f910bac2478927f5a8d85c808f0a6902d433

  • Size

    44KB

  • MD5

    33c6aa283f546119cc6d4a3f63452708

  • SHA1

    5608a32f20d196fc41533c679c5e267c56200b9c

  • SHA256

    dd38b89961f68c5aa0ca5d2deca8f910bac2478927f5a8d85c808f0a6902d433

  • SHA512

    d27c2c8a761e5073206f683a86d849ffa8d08ca5c6559fd8174e70ecbe8b7c6f5490d239b389258888a87d0d81dbb7f205991522952ed6cff5a3447f51cff188

  • SSDEEP

    768:8ok+90m24rvkSuV6Rj3Uxa9pjg9/a14rQNVTSV:849I4rvkMR7oajg9CNXTSV

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

topics-junior.at.ply.gg:45283

Mutex

ie3kcXUNBvNScl23

Attributes
  • install_file

    wininit.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dd38b89961f68c5aa0ca5d2deca8f910bac2478927f5a8d85c808f0a6902d433
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections