Overview

overview

10

Static

static

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.bat

  • Size

    36KB

  • MD5

    9b0ec63c76348957b6eec9d0cbb20a6b

  • SHA1

    96d10e7bd9b9e946ed415596066250502b78f570

  • SHA256

    caacc6fd0c872b2445fde0364008d8170368fd750febd139e0c37b537061d4aa

  • SHA512

    8a96bc1bca0d18ae99ed2c0b05dbdfbd6530586251da6ae04bedaeb752760426f66a04a39141a2f0d0b26c6c5bdb616738dca42a1078ea3f64fe779c1c1caba6

  • SSDEEP

    768:4MiqTmJ4S2BsbHh9Q3B7jeh/Fu9y9KOfh6/OK:IqAMWHhOx7je5Fu9yAOftK

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

blood-sticker.gl.at.ply.gg:65461

Mutex

z3S8eqN52LVAY2zb

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.bat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections