General

  • Target

    XWorm V5.6.exe

  • Size

    9.0MB

  • Sample

    240313-w8nffsce21

  • MD5

    eec6de07623ef8852b50556eda4ef0c9

  • SHA1

    ceb53c1eff9eeb028c148ad83c026ea33f620370

  • SHA256

    784e9feac0a135b7c211c1aaeb2553e14edcb9aa76a12ee652728782fd28280a

  • SHA512

    1546ec07525d5738932b8934294ab779ada637f70589d6011543d5a2dbc595829410a68db77d3aed51a00180224d6578666a271aefe86a63076858613f8a51b0

  • SSDEEP

    98304:KmfCe7FAhupGHgeKeCYq5+BGGInHzA/tISz+FeiJoqzHMYgUmY+tSCpnP/d7PCN:KmfLJKupbreZAG6C4eocBY+xpPV7PO

Score
7/10

Malware Config

Targets

    • Target

      XWorm V5.6.exe

    • Size

      9.0MB

    • MD5

      eec6de07623ef8852b50556eda4ef0c9

    • SHA1

      ceb53c1eff9eeb028c148ad83c026ea33f620370

    • SHA256

      784e9feac0a135b7c211c1aaeb2553e14edcb9aa76a12ee652728782fd28280a

    • SHA512

      1546ec07525d5738932b8934294ab779ada637f70589d6011543d5a2dbc595829410a68db77d3aed51a00180224d6578666a271aefe86a63076858613f8a51b0

    • SSDEEP

      98304:KmfCe7FAhupGHgeKeCYq5+BGGInHzA/tISz+FeiJoqzHMYgUmY+tSCpnP/d7PCN:KmfLJKupbreZAG6C4eocBY+xpPV7PO

    Score
    7/10
    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Matrix

Tasks