Overview

overview

10

Static

static

10

XClient.exe

windows7-x64

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    30KB

  • MD5

    53da809fff1f851cefec2d05513fedc2

  • SHA1

    81706b9a7dfd438522138b14469f6bab3d65502e

  • SHA256

    bfdf9631b7a18d00bd8f832fc45158cf12f5c8c29133e6b7bbf92ea6c8c0b446

  • SHA512

    1a7add262e1ae5781c1d77854b995e5c761ac82a626404a7ef1e39660b6384fb55bc6bda1f9fbe0d96da8946764ceb397659dc1993ea99fce41a93cca0816e22

  • SSDEEP

    384:WeAwIGmeffcbWICWv/0ILZGPc7g0hYACSqRFYjY2uRugtFuBLTIOZw/WVnvn9Ikd:Gecbl/b37gMYAoRF72uBFE9RpOqhpb5

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

Mutex

JeKt2hNb3ML5rELZ

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections