Overview

overview

10

Static

static

10

a2c1cf55d4...14.exe

windows7-x64

10

a2c1cf55d4...14.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a2c1cf55d46e4af3ea25027501b73d67a14950c0f6f318fdf4342f5b89c50614

  • Size

    341KB

  • MD5

    eb925b85314371a85c430576384f5cbc

  • SHA1

    1831a0805eaf88fa59baada4f27981d5ec8a0bf7

  • SHA256

    a2c1cf55d46e4af3ea25027501b73d67a14950c0f6f318fdf4342f5b89c50614

  • SHA512

    d01df972f80f5ca0f37ab1ec14b673c331b8aba7f48326f29c10648f13d1c14a23698f35734bfaf604ba1f93a57eb10f4766b01814d8a13110af2d40c8c58822

  • SSDEEP

    3072:Zlti5K9m0LDXdb+b6D1ANXKGsROwiXTF4yOvDPSooMoaLHPngR:/RmmDXdybkAdKGsKjF1OvDaooOLHP

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

  • pastebin_url

    https://pastebin.com/raw/QfqcUnJW

Signatures

  • Detect Xworm Payload 1 IoCs
  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a2c1cf55d46e4af3ea25027501b73d67a14950c0f6f318fdf4342f5b89c50614
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections