Overview

overview

10

Static

static

10

c4a81ce051...a7.exe

windows7-x64

10

c4a81ce051...a7.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c4a81ce051b694c8bb8e3799e30fdd8ee8bac9c45ef71b7139590083865bcba7

  • Size

    68KB

  • MD5

    5fae74d407d5a92dbe5306081139b6b6

  • SHA1

    34676968664a976a756e2e80aacce7ef968a3e17

  • SHA256

    c4a81ce051b694c8bb8e3799e30fdd8ee8bac9c45ef71b7139590083865bcba7

  • SHA512

    e3243b486de7409969caddb837ee793a6b9bee9fc83189856072d0e956cc38b2adfbe255732c2a72c12057c651854ba4af3b2d4382966dff9794c216940d6c4d

  • SSDEEP

    1536:+HUmTGraP4X0aQ0IiTMtaxBZVb+pW85eI2s6rO8TT:+0mGrHTbxFb+30O8TT

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

zezorandola-31367.portmap.host:31367

Attributes
  • Install_directory

    %AppData%

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c4a81ce051b694c8bb8e3799e30fdd8ee8bac9c45ef71b7139590083865bcba7
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections