Overview

overview

10

Static

static

10

00000.exe

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    00000.rar

  • Size

    14KB

  • MD5

    02b530aaa33700de371d1de2bad116e6

  • SHA1

    7e5c5c3b717f73fcb4821ca6d3c90d89f3517a21

  • SHA256

    d5cce640fbeaa70c15c28403010fcdc02c42cbb6fcbf097f8e8a22ea2bd30c75

  • SHA512

    bdbba99fa9a65940a676a9fcd381ba873d2a6b2f6674d0de25b971c207b20db1f1d5d43e0dde70180eba93bc12843547ae554dd3e63c62744b3aeb809f602f61

  • SSDEEP

    384:hYE2b1RyHgeqhxubDJ9ukXL0YIML7uWXs0Dh:92BKgeqhxuzBsML580

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

helpmyass.ddns.net:7000

Mutex

fdAQmPURfrdaU1L8

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 00000.rar
    .rar
  • 00000.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections