Overview

overview

10

Static

static

10

1275f4387c...03.exe

windows7-x64

10

1275f4387c...03.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1275f4387cfdc226a89156dab68429eaf3bc8dc0d7236c747468bd2fc2c45503.exe

  • Size

    175KB

  • MD5

    6e9a2ac438be69ee9b31ac9d10217209

  • SHA1

    1b7df45669754fdd59dbcf57be8150c784d48982

  • SHA256

    1275f4387cfdc226a89156dab68429eaf3bc8dc0d7236c747468bd2fc2c45503

  • SHA512

    8f32d3c77684aba67f461fcce5deac7e96578e2cae10f3e0e6d08197e0674a1580837539e0c22744f6682dc59df2b0e15894101fb0c96ce5b4bda27c06d39154

  • SSDEEP

    3072:SN/1KqKrbXDRkx8OIMHqM+lmsolAIrRuw+mqv9j1MWLQ+:UKLrbt+tJ+lDAA

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

Mukhbit-38162.portmap.host:38162

Attributes
  • Install_directory

    %AppData%

  • install_file

    system.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1275f4387cfdc226a89156dab68429eaf3bc8dc0d7236c747468bd2fc2c45503.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections