Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d6b7131722978f82195a6657bcadbb97c390966b76850a1bc9d22bdd39cd15da

  • Size

    64KB

  • MD5

    467de65b409662f8d65c7211ee45b010

  • SHA1

    2c7f3ba6c6417c54b43f3c377a52b6aaec5c56a4

  • SHA256

    d6b7131722978f82195a6657bcadbb97c390966b76850a1bc9d22bdd39cd15da

  • SHA512

    05904b03b80badc3f251db83386fdaa3d7cee74b09c2a36720fe3f28e8423a54b2932c095169d56eb14583e33b8ef05d64d3a4cd3c62db672ecb86fe6053171a

  • SSDEEP

    1536:WguGII9iRUDh9rSST3xLmHF7skbLMEYfgHt9kbMpNZ/OPmFRAjqBi/:vuSNqlskbL/ZN9+8Z/OPmFRksi

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

51.161.107.65:8080

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d6b7131722978f82195a6657bcadbb97c390966b76850a1bc9d22bdd39cd15da
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections