Overview

overview

10

Static

static

10

XCliesnt.exe

windows11-21h2-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XCliesnt.exe

  • Size

    43KB

  • MD5

    ef7bbfcdd3e9fb5e5ba7c567cfe7fc6c

  • SHA1

    4621bfc54dbff13c60de87008087aa787aa940ce

  • SHA256

    a9059e5dd9e4b54be722da461c46a83c92c8be0b15faf38396c1954b5fa96b39

  • SHA512

    60ab3599c34fb5d95d203a4b20039de87a4560fa085d1073a0d10ee08cfd9d9d02c498ec61bce98288c804d95e938af54af00fa8c5fc2e3141214246e15a4fc6

  • SSDEEP

    768:7X1qj4zpgLPg99okX2jhM6Lc+F+w9O5eoPR68O+hmbWLV7:7lq8zpgjgr5X2j3JFP9ieeR68O+0Wd

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

86.160.77.154:7000

0x20Be82eDe1D3001d450d10ef6944eC28a0682F4f:1
Mutex

DbHMnXSUFhmbwYrL

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XCliesnt.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections