Overview

overview

10

Static

static

10

Holy loader.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Holy loader.exe

  • Size

    70KB

  • MD5

    3e9581c45838e539d694aaad436df5db

  • SHA1

    d9765ff96a9f5766372f375af84d92e1f4b733c8

  • SHA256

    6bda53ca02900dd70668d4cc7f2e55999f9b185084948ea139850158cae712e4

  • SHA512

    3a8ca14a72d29d89b6a65a03e78f81f340a0b98b9e0b9f7ec27987a5270599251428702cffbad29d89af45339e35c63eadfd294d2bcd6439d9622317ed41a97a

  • SSDEEP

    1536:iy9NO9p0/gp2YXJmcfGgSJpgcbcc5CNQAe56AdwLI7OUU4kA:iMgL0/M7/f9MGcbx+eZ+kOP4kA

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Attributes
  • Install_directory

    %AppData%

  • install_file

    1.exe

  • pastebin_url

    https://pastebin.com/raw/0dDiYVux

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Holy loader.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections