General
-
Target
152cbca849779c40fe6673458a9e25e4be0b080f7cb4db8cfee5a88cec74b1e5.cmd
-
Size
65KB
-
Sample
240524-p7489aea6w
-
MD5
85c9311ae0014ac8bb98089d0bd51bdc
-
SHA1
5140e9beda6014b02df3c09f84a284f9c25532ca
-
SHA256
152cbca849779c40fe6673458a9e25e4be0b080f7cb4db8cfee5a88cec74b1e5
-
SHA512
f202a1e07afb444e5264cd28f7c0eedd55a3d002d14f989bf9fb065fd451be1df6197b5dcb61c616e8dbd1d3ba43cdc058192c89858c8bc292c199d5e8e9fb54
-
SSDEEP
768:std2pH1E6G5dMQzfwXLyVM0rAQiB/tp6UTGKxHHVpMGgJxhvtsQekLpzmWnfCB3Q:fpH1E6YrfDSF+UaaLtE1sQeAJ2Zlg9
Static task
static1
Behavioral task
behavioral1
Sample
152cbca849779c40fe6673458a9e25e4be0b080f7cb4db8cfee5a88cec74b1e5.cmd
Resource
win7-20231129-en
Malware Config
Extracted
xworm
5.0
hjxwrm5.duckdns.org:8896
MSmkrgH8xVI2Dczk
-
install_file
USB.exe
Targets
-
-
Target
152cbca849779c40fe6673458a9e25e4be0b080f7cb4db8cfee5a88cec74b1e5.cmd
-
Size
65KB
-
MD5
85c9311ae0014ac8bb98089d0bd51bdc
-
SHA1
5140e9beda6014b02df3c09f84a284f9c25532ca
-
SHA256
152cbca849779c40fe6673458a9e25e4be0b080f7cb4db8cfee5a88cec74b1e5
-
SHA512
f202a1e07afb444e5264cd28f7c0eedd55a3d002d14f989bf9fb065fd451be1df6197b5dcb61c616e8dbd1d3ba43cdc058192c89858c8bc292c199d5e8e9fb54
-
SSDEEP
768:std2pH1E6G5dMQzfwXLyVM0rAQiB/tp6UTGKxHHVpMGgJxhvtsQekLpzmWnfCB3Q:fpH1E6YrfDSF+UaaLtE1sQeAJ2Zlg9
-
Detect Xworm Payload
-
Blocklisted process makes network request
-