Overview

overview

10

Static

static

10

XClient_0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient_0.exe

  • Size

    37KB

  • MD5

    d623cf904ba7de87d193d975f32cbe4e

  • SHA1

    30e5287835a7a96e1e335805c00cada34ae4d897

  • SHA256

    af7a102f7e0b90803e766c6193db64f564b9f7db781d1d5265c961d9b4eda876

  • SHA512

    03b2ab3936a9433b7b0221dbe80aeeb7ce58c6975433e3b6fb39c4f80827abb3a8f76e4d36bb0a3397d3282863fab50c8e4e2418f0122dcc38dd93d9033e9844

  • SSDEEP

    768:5LvEvc6kadKsaEe/HWSnFWPq9Us6TOMhFirG:5Lved7aE4HWaFd9Us6TOMHOG

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

147.185.221.20:19801

Mutex

fTySJ5Ysuszep5HY

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient_0.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections