Overview

overview

10

Static

static

10

nebula-installer.exe

windows7-x64

10

nebula-installer.exe

windows10-2004-x64

10

Resubmissions

14/07/2024, 15:44

240714-s6mvcsygjb 10

14/07/2024, 15:29

240714-sxbqqsydkc 10

14/07/2024, 15:23

240714-sswv4sybrg 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    nebula-installer.exe

  • Size

    162KB

  • MD5

    4f62791d17b91910e00c1adc64caaca5

  • SHA1

    61146fc0dc215018c1dd9a752bdee94cdcfc3e2e

  • SHA256

    a0eee588ff3580c16476b9031829d157ada72eec8b68604ba4e65c8e25e45aa2

  • SHA512

    f6864cb2597d389b31e682fe2ce5d5e64eee6db7d881c9b64b766cadde9af5098ef9caffb2155f936fa8579c4eaf91f69c4e5b7af2dd53e20eeb3ec5aa6c77a4

  • SSDEEP

    3072:mlc0JnLbyE25KPOh933vB6ldNorXIstELleEgBOp:gBLbL4x33W3oDnFE

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

edition-ages.gl.at.ply.gg:14076

Attributes
  • Install_directory

    %AppData%

  • install_file

    svchost.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • nebula-installer.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections