Overview

overview

10

Static

static

10

regexe.exe

windows7-x64

10

regexe.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    regexe.exe

  • Size

    49KB

  • MD5

    80378960babe228ed1dc80afe6bb9f37

  • SHA1

    44282f5a22a7baeca9dc9cc37d13ec69ad21f8e0

  • SHA256

    4585725952f3497b8ccd2bb05a2063889a42bafa034ed7f4f9fb7497184c6ad1

  • SHA512

    b16f7d115d024b40b3191e2eca6f6af882e58e8860276cca80826e34baeed7bbb7834c377abb9e73383525ade15afaeb6a823541560ea6a950fa130f1d04c75e

  • SSDEEP

    1536:YDyIzZk0tbkJh5PmB5fF19CJ6MOACWgT3n:YpZkhJhJmzF19CfOAGTX

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

moneyminecraftsmp-55451.portmap.io:55451

0xCB69252110b2C43182c6119742A303bA23715909:0
Mutex

t67zUZ4I1Yb9O3le

Attributes
  • Install_directory

    %Public%

  • install_file

    Registry.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • regexe.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections