Overview

overview

10

Static

static

10

XClient.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    36KB

  • MD5

    19822e23c9acdca43e50e979515396e1

  • SHA1

    26fcc747d58f852dda89b12175d84ef03ff08e0f

  • SHA256

    08374f7369c61f5c019aa49e63b65018ae8b7373ccc5ea723cfb4b85f6e33579

  • SHA512

    791d818562a0e68fe688b77611f250a807cfd2b76c41f81c51248471b33c2e9e9010fca28f0d36b5587e537a4adb31108a2de4d1c8c8e91bb8a28e34a830e8fb

  • SSDEEP

    768:LMiqTmJ4S2BsbHh9Q3B7DQX/Fu9ybOfh+7Of:TqAMWHhOx7DQvFu9ybOf5f

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

k-infectious.gl.at.ply.gg:9165

Mutex

FpVo0eVgX6mPYpjM

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections