Overview

overview

7

Static

static

7

XWorm V5.1.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XWorm V5.1.exe

  • Size

    9.3MB

  • Sample

    240513-22xnfahc4t

  • MD5

    540a501c683c91729e712fe83cf4e92f

  • SHA1

    d426473f486cd7b46ec8d3bae4a3f9b42f780f89

  • SHA256

    567ac8995973807a1288847d357dd8014118f07194a4db64cccaeab5871d54e1

  • SHA512

    25aa06429cc1272c1932e543d41563905964ef2b7dad9e6b0a13aee8c6fff5a4a9e9f4ba023435d265ddb36cdfebaca8efadfd8e9a3918747e29a2764e09a2a6

  • SSDEEP

    196608:fHMCjsbDbqTw0l1s3PIump2n7lpQutrONgFETLU6Jz8p:fHaXYDXs3PIo7wutrMYEB

Score
7/10
agilenet

Malware Config

Targets

    • Target

      XWorm V5.1.exe

    • Size

      9.3MB

    • MD5

      540a501c683c91729e712fe83cf4e92f

    • SHA1

      d426473f486cd7b46ec8d3bae4a3f9b42f780f89

    • SHA256

      567ac8995973807a1288847d357dd8014118f07194a4db64cccaeab5871d54e1

    • SHA512

      25aa06429cc1272c1932e543d41563905964ef2b7dad9e6b0a13aee8c6fff5a4a9e9f4ba023435d265ddb36cdfebaca8efadfd8e9a3918747e29a2764e09a2a6

    • SSDEEP

      196608:fHMCjsbDbqTw0l1s3PIump2n7lpQutrONgFETLU6Jz8p:fHaXYDXs3PIo7wutrMYEB

    Score
    7/10
    agilenet

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet
    behavioral1

MITRE ATT&CK Matrix

Tasks