Overview

overview

10

Static

static

10

VeneraAlpha_V1.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    VeneraAlpha_V1.exe

  • Size

    54KB

  • MD5

    cad63e4bd92cc9756490013a3b32d9b6

  • SHA1

    4aa7be1fac2b030c56276cdde1a4ffd898292c1d

  • SHA256

    8d177f652c7b2d693f561f0c8f5f6b39db02e6691aed44e5eefa603f61898f87

  • SHA512

    fb7bb6b1af1e6bbf9a06fe594ba97d77c5954d468cd2939e8228e7b8c5e59a8431f68b6d96ee8448fca092e18ea106146925cf9d78373536634c22c2e270e489

  • SSDEEP

    768:sdygQOyrBlDzRuiegcy9eKdV2UwJRiegTVeD/Kf:swF3rBlDVZ5bZm81y/Kf

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:7000

Mutex

b8d5M9oegQdbuciK

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • VeneraAlpha_V1.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections