Overview

overview

10

Static

static

10

dc8d4016e5...b1.exe

windows7-x64

10

dc8d4016e5...b1.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dc8d4016e553d83b1505f3d172d41b4044bb6ebe8f11b79261c53a8313d2bfb1.exe

  • Size

    68KB

  • MD5

    36aebfdc0729ce02890456ab1752580e

  • SHA1

    032d342de07d92433be9271502e1237bea42f4b3

  • SHA256

    dc8d4016e553d83b1505f3d172d41b4044bb6ebe8f11b79261c53a8313d2bfb1

  • SHA512

    723c78a93f4d7fbc0184c03ffa27ef8b9ad15dfb70f616fdba50d9effd859395d80b48e081e232d098af0db6b47e30f3e73be815225eae788e72819872358408

  • SSDEEP

    1536:M7mKqGs6+TCSxWadbnj560hDA2c6/0rzYqMOUIslV:oK6Onpbnj42q5MOUIMV

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

5.tcp.eu.ngrok.io:15287

Attributes
  • Install_directory

    %AppData%

  • install_file

    .exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dc8d4016e553d83b1505f3d172d41b4044bb6ebe8f11b79261c53a8313d2bfb1.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections