Overview

overview

10

Static

static

10

XClient.exe

windows7-x64

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    70KB

  • MD5

    73ebd6cd647351d9a87fbbee2db1b12e

  • SHA1

    2ae3fc4db5e81a3e7ba35b9fbcdd282012c5431a

  • SHA256

    a3e85692ca93a14cb772972c0ce257321dfcac35f09dfdc40a04486d6d800fef

  • SHA512

    7b306d79ef126764911afbc4c67a0815352ebdf1a726d7e1d42a5c138ef47a0a1be94ccc2788cc72d3e6701bd5ca45cc17b5565e75e62142e65f54aa58fa1f57

  • SSDEEP

    1536:MIExR26jyPDIy7vHv2YFZt0cwjAIf71JbOtlb1n+3qNX6TdisMIOEK/Eq3V:Mdw7vFt0cwP5JbODIrLOEyXl

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:10053

none-brussels.gl.at.ply.gg:10053
Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections