Overview

overview

10

Static

static

10

1710338709...36.exe

windows7-x64

10

1710338709...36.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    17103387091c3d21384080163acaf4224743a65eb3966fbe37dad6c29e824ce36731d1b209236.dat-decoded

  • Size

    36KB

  • MD5

    698b68c9b46313a045256ea622c27ae6

  • SHA1

    231e04d63eb89cca4368b30c03efaa44a265f2fb

  • SHA256

    6cc5c5302a2072f9821c40c06370e584704f8c073db2ce36e9e6c42afb0b4b28

  • SHA512

    6e2908a90f7722862feca0ce4c9aebe0a04a22ba756ecdf783d76c9d60e7d5e5dfaffdeeb0a5ebc01273d7fa004f30151a8ae17d3d6673c745b8be6b48bde3e1

  • SSDEEP

    768:2GLtt3QI2/yQJVZFDeo8icH1bxbFb9E7OMhDQXv6:2Ab3QI2/yQBteNicH1bBFb9E7OM566

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

paulrdp02.duckdns.org:7000

Mutex

SLeV9gK9tl4aMP8X

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 17103387091c3d21384080163acaf4224743a65eb3966fbe37dad6c29e824ce36731d1b209236.dat-decoded
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections