Overview

overview

10

Static

static

10

0377d8a00c...25.exe

windows7-x64

10

0377d8a00c...25.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0377d8a00cdda1e8cc45b73c1eba7202b42c1168530ef0d41e089c02032db925

  • Size

    62KB

  • MD5

    9e0749dc40295c3b5a4de7b037508d31

  • SHA1

    78da8be884aa239f885138030fe9abb0fcfd1ad4

  • SHA256

    0377d8a00cdda1e8cc45b73c1eba7202b42c1168530ef0d41e089c02032db925

  • SHA512

    f657d0b59dd0f10f6728cd8a7b8f10935fbb60675f416403dded3651a2b29bcd7579a716a071f5d911e91e206bd89c8c1fbccd9c3887958f91151dfb57de69cd

  • SSDEEP

    1536:WJJE8iPIou5YFGK6q7uHbMHgTnGEHQ3ODUBuSw:WJJiruWF8q7uHbMFEHQ3OYBRw

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

child-theatre.gl.at.ply.gg:23076

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0377d8a00cdda1e8cc45b73c1eba7202b42c1168530ef0d41e089c02032db925
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections