Overview

overview

10

Static

static

10

b.exe

windows7-x64

10

b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b.exe

  • Size

    60KB

  • MD5

    075043a678c8296b7157767dacc5ad75

  • SHA1

    c7e90f63aed11fb7f3410c596dd0b34f6a38c37b

  • SHA256

    b4a3bc6ce36137cf239acaac6790cdb0f63ef45e0a3a11e35d0093efaf4feae6

  • SHA512

    5294fe72811f46016c2f2822e6132938d2ea55226a966e27c0202d53d7398787c0dc1b468d7ea0a44804b83fc4a1ab7f0604f2645780f42fb7f9928862024ac2

  • SSDEEP

    768:viojzODPHyzBamd5K8EXp9GJMLOyM/p84eDw6WmlGUPxw8hA58DkParL3v0IszB1:vikiDPyamdUHZYm4uTWS3OmL3QgOEc

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

atomic.ruspyc.top:9049

Mutex

lC0nl652JtSCtkcd

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections