General
-
Target
XWorm V5.1.exe
-
Size
9.3MB
-
Sample
240513-22xnfahc4t
-
MD5
540a501c683c91729e712fe83cf4e92f
-
SHA1
d426473f486cd7b46ec8d3bae4a3f9b42f780f89
-
SHA256
567ac8995973807a1288847d357dd8014118f07194a4db64cccaeab5871d54e1
-
SHA512
25aa06429cc1272c1932e543d41563905964ef2b7dad9e6b0a13aee8c6fff5a4a9e9f4ba023435d265ddb36cdfebaca8efadfd8e9a3918747e29a2764e09a2a6
-
SSDEEP
196608:fHMCjsbDbqTw0l1s3PIump2n7lpQutrONgFETLU6Jz8p:fHaXYDXs3PIo7wutrMYEB
Behavioral task
behavioral1
Sample
XWorm V5.1.exe
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
XWorm V5.1.exe
-
Size
9.3MB
-
MD5
540a501c683c91729e712fe83cf4e92f
-
SHA1
d426473f486cd7b46ec8d3bae4a3f9b42f780f89
-
SHA256
567ac8995973807a1288847d357dd8014118f07194a4db64cccaeab5871d54e1
-
SHA512
25aa06429cc1272c1932e543d41563905964ef2b7dad9e6b0a13aee8c6fff5a4a9e9f4ba023435d265ddb36cdfebaca8efadfd8e9a3918747e29a2764e09a2a6
-
SSDEEP
196608:fHMCjsbDbqTw0l1s3PIump2n7lpQutrONgFETLU6Jz8p:fHaXYDXs3PIo7wutrMYEB
Score7/10-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-