Overview

overview

10

Static

static

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    33KB

  • MD5

    7d89b6f0f986063c996f1bd148e3f2ab

  • SHA1

    cc98f39189cffd38964766a6f93ff4b2829a6950

  • SHA256

    3d8381abb2ea8f1e6152f79c33c78d71b00280bc1ec75982ef7d5403063b70d3

  • SHA512

    198b269feac90a961aa74920949ce68c1b4798222c5af1fe25127de807be3242075da4fcf71f0abe72134a9834f102af01ffa80b05b638fa8da088607359df7e

  • SSDEEP

    384:6Ei/Uua+vNijn/xVnzc6nLj7x3ZFsLcvSAOoCIRApkFTBLTsOZwpGN2v99Ikuis9:sa+vNkDpXx3HJvlGIVF89jAOjhNbu

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

62.233.57.44:1488

Mutex

sc1Tnj7OQCyMbRm9

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections