Overview

overview

10

Static

static

10

19b8e954cc...cs.exe

windows7-x64

10

19b8e954cc...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    19b8e954cc78bcf64ca93569032ba0329fa9cac04df8d8b901a2e335e8800726_NeikiAnalytics.exe

  • Size

    32KB

  • MD5

    2819b0c1d10d712e679856b2a5ca8850

  • SHA1

    4f3fbc06341721ce7bb2c33c9f7752112f993868

  • SHA256

    19b8e954cc78bcf64ca93569032ba0329fa9cac04df8d8b901a2e335e8800726

  • SHA512

    b4b07bb711e8fbc503b0df43ef40169e1096079cb9fa86b111a85754b3c1330202c33681d116bb7868376f945db66d9a2057d6e68825ed6c125417e232a6665d

  • SSDEEP

    384:kb9KROjuc168mdoZEMqOL/9P0QQTxcUhuE1iwRMgtFuBLTVCFZwSJa9Kn9XkVoAk:89Cie8dZEmFPiuE1hrF99Q+OqhTzbp

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

127.0.0.1:7000

Mutex

lPINCa4oAurr9c9a

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 19b8e954cc78bcf64ca93569032ba0329fa9cac04df8d8b901a2e335e8800726_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections