Overview

overview

10

Static

static

10

1713852067...ed.exe

windows7-x64

10

1713852067...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    17138520674595629f036092083cd6f67bdbe7369638076e0b4435be55ac10762b26f7e163552.dat-decoded.exe

  • Size

    34KB

  • MD5

    f2c8f168ab79a0fadb6234b193c52255

  • SHA1

    ea8f5594f5c3d0e0e317828d8a0316c20b21f1d8

  • SHA256

    02f1e7955a182f8488b636ec84999bf14b186905e84e3dc796a8eeb1dc84177f

  • SHA512

    5ec1c4d1f22fd304166d94fd227c16630e1574ae0281dab8dd92ed74f82b91a345999131a464bcb7b51fb1b0d5dfeb94180b7a4abc3dc2a593802f732ae62575

  • SSDEEP

    768:o4fK1pDGkptwyZScCBSUapNgqlrU/kZB+Bcg4tlTF592unO9hJSURG:4DGkptwyZScCkU4rFUsZIB54HF592qO+

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

aprilxrwonew8450.duckdns.org:8450

Mutex

0VZWHbNr1OapRPc5

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 17138520674595629f036092083cd6f67bdbe7369638076e0b4435be55ac10762b26f7e163552.dat-decoded.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections