Overview

overview

10

Static

static

10

2764-21-0x...ry.exe

windows7-x64

2764-21-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2764-21-0x0000000000400000-0x0000000000412000-memory.dmp

  • Size

    72KB

  • MD5

    f8290f41adb7fecd99fa4772270fd4a9

  • SHA1

    db68d6969f0a86b38cbaae493498232450c42684

  • SHA256

    8643d20898afbf457aa11bb2905670b13ce47a2997701f8ae904eaffa5319f05

  • SHA512

    2e10acbea3dce4aa3bcf3c512f3367ee7d223ad2c9e8db7eaf31260e17d19891fdbbfc2f4ffc1b99a24df2aa9da2eeeee095d430d975b3b619c915345672ff3a

  • SSDEEP

    768:Mecbl/b3EMYAoRM5uBFE9RfOqh3bqo5dcWZ635LhlEDSQS:jcx/54FE9RfOqJ2o5d9Z635LhlEDSQS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

Mutex

kJNeDE0jriPTSPR9

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2764-21-0x0000000000400000-0x0000000000412000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections