Overview

overview

10

Static

static

10

HaCkS FoR ...Te.exe

windows7-x64

Resubmissions

03/05/2024, 22:28

240503-2dwq8sga3x 10

03/05/2024, 22:24

240503-2bjnwsfh4y 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    HaCkS FoR FOr FoRtNiTe.exe

  • Size

    75KB

  • MD5

    f23352ecaff4eca8f010fb1bed8d9f76

  • SHA1

    62af53af3a1c42cfcca10c888cf3aa7931fc96fb

  • SHA256

    6c2548b23757fb4bae8c8077633db8fe48a0cef479d559aad87e84c4eb0c33ca

  • SHA512

    90353b426f98ce6e87fd5828cae6f7d9750153f58542d950eb7c82ae8849383ffe48bb48809338baf907706c90fe6a75b6c9820e7610fd674c475c24720d4514

  • SSDEEP

    1536:/EPaXtqW6oJYltTbGozD9LQftcBlbt36MHeHdc5AO6AwoJz5:/wsYSA9Lwtcjbhc/O4oJt

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

recommended-management.gl.at.ply.gg:42637

Attributes
  • Install_directory

    %AppData%

  • install_file

    Chiken nugget.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • HaCkS FoR FOr FoRtNiTe.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections