Overview

overview

10

Static

static

10

owo 2.exe

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    owo 2.exe

  • Size

    41KB

  • MD5

    42e8d9be6f3ee516d373371ee375c94a

  • SHA1

    032e22f4cdcf61c61f64c8daa9dece3228635abb

  • SHA256

    6996e8dac29d87deed10b2c5d49ebfffe6d09e594e9e2419054ba510df4a2d0b

  • SHA512

    5d5fa46c5bf22b7fa28d31eb7e18ee62b1a5e6c8cdc2ba64ffc1a4924ac6ecf127dd60fd6f6d7db6875f48d5cc68a9ef0318ec1f9b5f4b173d871f56554945c5

  • SSDEEP

    768:Q+ibOPCt0LxO4RXvggggpLJF5PG9pm9s76vOwhy3Euzg:QtbuCiL0YXvvggHFI9A9Q6vOwUNc

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

45.88.90.228:6277

Mutex

6njZOQJC2nr59eEr

Attributes
  • Install_directory

    %Userprofile%

  • install_file

    svchost.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • owo 2.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections