Xworm V5[.]6[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Xworm V5.6.exe
Size

14.9MB
MD5

e2b24f34f587c4fc42e70251e587d1f4
SHA1

f5c5fc2a152cd6a50a2d7a68a674b030a23fabfa
SHA256

3ac438f0c02a2387757421de23e45ae9abc1a6b5f833e7af67bc39b5c0aa328c
SHA512

cb690549d94cbf10d6d0af04b9b11e52dc43012e189f60e27ecfe146773ae7f2e86907340d70519dd1dc84214b6b0052063270f607b9ef83e3a00db198258d0f
SSDEEP

196608:a7/BAe1d4ihvy85JhhYc3nIL1kehn4inje:aDyIhhMRka4i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Xworm V5.6.exe

Files

Xworm V5.6.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14.7MB - Virtual size: 14.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ