Overview

overview

10

Static

static

10

XClien2t.exe

windows10-2004-x64

10

XClien2t.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XClien2t.exe

  • Size

    40KB

  • MD5

    05f2ecebbd421b117a113315bf808ebe

  • SHA1

    e70a3b93fdd53a7fec5d1c93cd8f8b1a1bd9d3ce

  • SHA256

    44b8569e9dde2ae5a3938cafa70e25d7e17593e89c2c274643e932c2a25c8a47

  • SHA512

    247983e74714df82d946d4cb1e34305568dfc74d27ada85310955c593a54e978abb5ba16ee6fd69d1b28510953eadf9ea657deb52bfd3170c023b7139c0f36d2

  • SSDEEP

    768:m5tptef91POmSwP1IJ+V4E9tbxHgkb8pEF3WzhO/hJdpE6I:mfUY6e+rqkb8pEZWzhO/PE6I

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

4.tcp.eu.ngrok.io:15883

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClien2t.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections