Overview

overview

10

Static

static

10

28abbf3d3e...08.exe

windows7-x64

10

28abbf3d3e...08.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    28abbf3d3ea8b7096e5d45013b7de1d4dfc2c76f7debb8df814088b093493108

  • Size

    81KB

  • MD5

    da9878e6f8e134ec824073766136109a

  • SHA1

    dcee9ebd2e6c3a1a10541e900a981c78c30db915

  • SHA256

    28abbf3d3ea8b7096e5d45013b7de1d4dfc2c76f7debb8df814088b093493108

  • SHA512

    e0725c030483cb749f522f10c9b7f2df970fef3ddde4b3b2e9495b65a688915e6412e80497526000658f7ff69471daee358f610d7d2fb854b0a4607c3348bc8f

  • SSDEEP

    1536:rGiqU3wYMYjt66z2jT4BeSI/0b4PISI5T6CtpW3Ow/NqtTe4ktiR:i5U3whHjThSFb4+wOLJFpR

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

pictures-intervals.gl.at.ply.gg:64197

Attributes
  • Install_directory

    %Temp%

  • install_file

    XClient.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 28abbf3d3ea8b7096e5d45013b7de1d4dfc2c76f7debb8df814088b093493108
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections