Overview

overview

10

Static

static

10

c4eb985b24...d9.exe

windows7-x64

10

c4eb985b24...d9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c4eb985b24a9a9b011c391d3be6814e7721db0c5dd42ae2c7c105c8f0747d0d9

  • Size

    124KB

  • MD5

    266ccd5f057f35e36891a0f9aeac48a9

  • SHA1

    4189e1cef377dd2b02f340e682f03414864bb6d0

  • SHA256

    c4eb985b24a9a9b011c391d3be6814e7721db0c5dd42ae2c7c105c8f0747d0d9

  • SHA512

    08efb382ef829fa5eb95ecad24a482ffef7190d9f582473910f8dfd1e23cb12b2823fbde773c19f3ae69ff5edeea9cfba4fe45762443001ad5007d73bec14ed4

  • SSDEEP

    1536:37+JjPSUMhf7Dhck1rBLkbw324NNPnOOj90vG8rPyQ8QlD+zVS/TRhjYb:L+BGRhZkbw3tJnOO+NPYb

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

application-favorite.gl.at.ply.gg:60795

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c4eb985b24a9a9b011c391d3be6814e7721db0c5dd42ae2c7c105c8f0747d0d9
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections