Overview

overview

10

Static

static

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    65KB

  • MD5

    8617f1ab9fdd3fdf84eea078439f72c7

  • SHA1

    998b0f01504bbd9b3055553f87a70240a68827fc

  • SHA256

    a85ae2633f7af6b455122f6a67b9540f97458f969dddef41957412c877717cb4

  • SHA512

    a6e8adf148fe60a26eb8cf46afe8e455936a648b662dd31b9aaf86d057f9d7943509e98e3763079d5cf12948da48dee3be2c588b6816b2054e0044055943ed5c

  • SSDEEP

    1536:q224eK/Zxf/waUj9bw+bJcIBKLhcDn66RBWOUuR2jg:324eK/Zxf4aUB8+bJcIkhemOUuReg

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

5.tcp.eu.ngrok.io:7771

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections