Overview

overview

10

Static

static

10

Crack nurs...ha.exe

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Crack nursultan Alpha.exe.exe

  • Size

    56KB

  • MD5

    08c6fd86950ec04dd74a3e0f073630a8

  • SHA1

    303ca55d2c29cb4f7f7c98df079287a4831ce999

  • SHA256

    2d89d2aab7dd658f15e2c0ed4fb85ecdb98b139d41fcd6e53a35dbaaf3584919

  • SHA512

    81f00417e31c17eb9fe9c2e217c7229c061dc800d2677ebc61fc30b6e2efd3a2234f46ca51e25e43f49baa74c655dc6ca1a17645dec469f155b0748bf3751f90

  • SSDEEP

    1536:FES8aaheQ+AiqBrnuL0+VsbNEA4jXO2XYypFpETk:FES5qE0xbNUXO8tpFpYk

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:2421

tel-form.gl.at.ply.gg:2421
Attributes
  • Install_directory

    %AppData%

  • install_file

    discord.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Crack nursultan Alpha.exe.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections