Overview

overview

10

Static

static

10

nitro 2.exe

windows7-x64

10

nitro 2.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    nitro 2.exe

  • Size

    52KB

  • MD5

    56abcb886b78f154b9063404f06f1374

  • SHA1

    86d34beca40992416149b217aa53a0ec515de86e

  • SHA256

    b644ae851f592e5a8ae4d3fe3d1e44cb0f5d0e03f68464867c1e5fd934ee7887

  • SHA512

    591e01d28969282fc0f81c98599e4cec8f33d7fa8a064c04771c4316f493a1757335053fb0319d7c381863cce2245b6f20fdeb27987d189f1eb3a5486709a95f

  • SSDEEP

    1536:04bbqnPISXvvgjFI9AH6vOw4Fk64fUX8r:0SqPpvvgjFI9AuOwVhcX8r

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

late-unfortunately.gl.at.ply.gg:6969

192.168.1.60:6969
Mutex

VwUS68C0jR1ZRLhu

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • nitro 2.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections