Overview

overview

10

Static

static

10

1355e27002...cs.exe

windows7-x64

10

1355e27002...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1355e270028a73c1413a1fc65b945700_NeikiAnalytics

  • Size

    60KB

  • MD5

    1355e270028a73c1413a1fc65b945700

  • SHA1

    274eb02903511ac09de10560232bcfe5d14fbea1

  • SHA256

    32dd084ce04d3b7c4ab567a48d98b73348135e16089825f13a453bc9b19e1ced

  • SHA512

    47d8e2d432320284c3d94f5b61e2e29529dc18af2998e12ef5aeac7848ddc3e63eb163618bf4eedd76cb1259f0e96d99d5475c11b659c0b80a32e4acbfd092a7

  • SSDEEP

    1536:pTntqSKuo1Sc4GXHZQ30YKzsq+bhBL4//d6hOn2uI:pT0z1kA5QEYKwq+bhBMCOnfI

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:49937

fri-sought.gl.at.ply.gg:49937
Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1355e270028a73c1413a1fc65b945700_NeikiAnalytics
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections