Overview

overview

10

Static

static

10

2024-05-23...ar.exe

windows7-x64

10

2024-05-23...ar.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-23_5cb2a2af94232cfc857b410de8acb617_hiddentear

  • Size

    156KB

  • MD5

    5cb2a2af94232cfc857b410de8acb617

  • SHA1

    cafa9b9a5c754e1476380069d97ff2e64e99d560

  • SHA256

    4cb64d17a61ef8b9e07bc3497e948e8116c05b07f1710d38c8b6bcdbb47ae4df

  • SHA512

    680e92a13f7de11cac0b5825071ec1914918c3c1802fa566ad115bf2a9120f27c537270ff0eed3aafad2eb87f72b08113147645e459f7c625f60b0e17230613c

  • SSDEEP

    3072:ZZPPBDCakbgwtat19bxROHzvM+lmsolAIrRuw+mqv9j1MWLQJ:ZHYbTazV+lDAA

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

23.26.201.211:58001

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-23_5cb2a2af94232cfc857b410de8acb617_hiddentear
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections