Overview

overview

10

Static

static

10

happy.exe

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    happy.rar

  • Size

    15KB

  • MD5

    59bbdc81a707bee96e82c1904a663e3f

  • SHA1

    5ac6de2ddfab02b3f38d59abc03e38e4d45e2cf6

  • SHA256

    34f9178afbcb4f9bf910aee65f5ed4c2efb1d0369c389339a5d57544cf8ef393

  • SHA512

    d9cd8a1cb75c7355fb98fd87b537613aacc262a437c1a3fcb8f87746cd8f87a06b10d9e378c75777a4b75a9793246aeee12af3c3d8518bef76c6ba56bc950056

  • SSDEEP

    384:+VMnobkvvd8zEAnnIRZfG9MAGV1wtSsgP8cbKfS:wMnTQE2nKG9MN4tKQS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

happy-amended.gl.at.ply.gg:39398

<Xwormmm>:1234
Mutex

6Syn8fkzJxzHDntu

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • happy.rar
    .rar
  • happy.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections