Overview

overview

10

Static

static

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    32KB

  • MD5

    9bbb4cda8efb91e35a8c096ef3ece712

  • SHA1

    995b18051de93508cb53cb6d4fa4dc57ffc16e0e

  • SHA256

    0d13d6845b064b82e1c87d3627d51802455917c0ebb291249831dc4c780f507d

  • SHA512

    2b3bf921f3748ebc85f48c271827ed4613c90700d494f57e4a0df9aa5dc2799c889f61369588bf868846287401e45aa25cccdb39678e6bc26696ceb99d8b99c9

  • SSDEEP

    768:UVa+vNtg+PB93Tw4xKdVFE9jI4Ojhcb4:GvNtgw93U4xcFE9jBOjmk

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

19.ip.gl.ply.gg:44123

Mutex

BUVOCFMELlHLKGdO

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections