Overview

overview

10

Static

static

10

Xclient.exe

windows7-x64

10

Xclient.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Xclient.exe

  • Size

    38KB

  • MD5

    d77397ab46eb531732629de610dfd019

  • SHA1

    7807cda05e71b1dce105d80ec23e40d55077b4d1

  • SHA256

    be1243dcd5cd64592aeb2c04d1dcb1a76c101aade618dbf6c33f96704741451e

  • SHA512

    f49a1c0a67bf194572c00a51b779364175c72a3d9fe419f599a6108224da266f7731c54feb985cee151a7df61c7fe4a6d2d23ddb9881b1f14c5c060d95b62eff

  • SSDEEP

    768:SFtVJhZprPHSECWbLG1KuuuEYEgefFWPC93IQuW6cOMhha9:SFthZpLb3O1KuuPhFJ93eW6cOMLM

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

127.0.0.1:4099

Mutex

WSW1mmn4FiepKDro

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Xclient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections