Overview

overview

10

Static

static

10

bac553910a...4b.exe

windows7-x64

10

bac553910a...4b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    bac553910a48026e877451dcdb67cb43dcc408ecb0a501a4cf33c5abccdc6b4b.exe

  • Size

    79KB

  • MD5

    9ee0803ba194dc232f46891995686299

  • SHA1

    263185ee63243413b3b719b3c4bab214c2789f7d

  • SHA256

    bac553910a48026e877451dcdb67cb43dcc408ecb0a501a4cf33c5abccdc6b4b

  • SHA512

    197665cbb07c5603027ff8d42717eafe86ca97bc454796a4f762b81d36b5378da6eb9abc21926b5c71f09b93310b0eda5d5a44d422a8832b80a62151990468a5

  • SSDEEP

    1536:L2mX4TKP0Vi1JvwfpbZLaQIcbH5AdJHCv6g/OyuKxOohXc4C6+:K04kwnmQTbHY1k/WCOGc49+

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

89.213.177.81:7000

Attributes
  • Install_directory

    %Public%

  • install_file

    sevchost.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bac553910a48026e877451dcdb67cb43dcc408ecb0a501a4cf33c5abccdc6b4b.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections