Overview

overview

10

Static

static

10

XClient.exe

windows7-x64

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    101435d2949c34334d71b9cc9e4d2a61cf9cc7930e499ebb132f44ceada61194

  • Size

    34KB

  • MD5

    9aa8f55f3b2af01efaf48904a7ee4e26

  • SHA1

    c1d032cf179b13f6ce66f8f711ce2e86de32b4ab

  • SHA256

    101435d2949c34334d71b9cc9e4d2a61cf9cc7930e499ebb132f44ceada61194

  • SHA512

    d0b3c3d5559e443927c16f6d4084257cdb2bf6bd195310c9c4c6d06e897c10a5462cdf15c6a9f259069950e4790be6027de6d15bd8cd06a390a6f90cc234dfb9

  • SSDEEP

    768:CHCioqb37fTlkGubRojy6hgBeCh5/JmbTs6LdXnZ:SCHqP78bAbgBeEVJOTHNZ

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

91.92.241.69:5555

Attributes
  • Install_directory

    %AppData%

  • install_file

    AMD Graphics Manager.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 101435d2949c34334d71b9cc9e4d2a61cf9cc7930e499ebb132f44ceada61194
    .zip
  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections