Overview

overview

10

Static

static

10

XClient.exe

windows7-x64

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    166KB

  • MD5

    61e002321f24dcaf19192d9e1ce8d0f9

  • SHA1

    bba59305974ec78bc8fd0cbf70632a1f1708d9bb

  • SHA256

    919b0a4d2d0a00b1a6b078bfb032b1dad1e1856707a094dca2141b0236bd7e63

  • SHA512

    d366811ba0a3f0ea61f666babf857082f0e3b8c4726b3aecd8073ae6a95bae27ff808baed6d3c2eaedaf41be9b2325811559519e942728af5ff4b3a1f40ddc76

  • SSDEEP

    3072:UzidWAFBukIQHzbDXdVO7tJe4NpVq8BxFRzaqF+o2GQJ7/JzqVfGvp:UzidWAFMkJTbRgVqwlL

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.0

C2

manual-intake.gl.at.ply.gg:30012

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections