Overview

overview

10

Static

static

10

real-al-d7ya.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    real-al-d7ya.exe

  • Size

    36KB

  • MD5

    2b4129ddc8fddd48aee75adfaf4b59cc

  • SHA1

    cc0226215497cec7adad4b6ddbe37c28bc1eca74

  • SHA256

    5c3e62c072c7bf77abf2b6a087bb673121913113faba905e02bd776d0bb1f4fb

  • SHA512

    c04d82f47042022cab0c8624f63bd392f78613dd8909e69c5f8dca54d1c84de5255e35ecab36d3a451cbe56417f8bbb70db8a438fa09fadbd6d230ebfc173b78

  • SSDEEP

    768:kMiqTmJ4S2BnbHh9Q3B7DQX/Fu9y+Q0Ofh47O8:EqAMbHhOx7DQvFu9y8Ofz8

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

k-infectious.gl.at.ply.gg:9165

Mutex

7zSdnFOyE9rndHTn

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • real-al-d7ya.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections