agenttesla | 1d2b21fc4690b65ecb6e6fa2364b165290837ec2df8ee6859bdd7afd36e7016d | Triage

Submit
Reports

Overview

overview

Static

static

XWorm V5.2.zip

windows10-1703-x64

1

Resubmissions

02-08-2024 23:48

240802-3tsj7avhpr 10

Sharing

General

Target

XWorm V5.2.zip
Size

95.0MB
Sample

240802-3tsj7avhpr
MD5

8b571b1487a7ee8b78420b7bdf6f6333
SHA1

c264397f31a7b4f272a5f5acd51fb70cc55e3cc8
SHA256

1d2b21fc4690b65ecb6e6fa2364b165290837ec2df8ee6859bdd7afd36e7016d
SHA512

dccf2b9723c7a4f530d997b457d165a270af7ac01c0cce3b952f7f709727f21d781584bd2bb660efd6d38853ba510c649a3778693c5f08df7d721720f437366f
SSDEEP

1572864:cXjrCTvb2gXxrCTvbEcU8IrNhMXLe2KOJQ0/4lsb+LLU8IrNhMXLe2KoZQ0/4H+C:cn9gldEeNSjJJ/4XTeNSBZJ/4bT9G+

Score

10^/10

agenttesla stormkitty xworm agilenet

Static task

static1

agilenet agenttesla xworm stormkitty

9 signatures

Behavioral task

behavioral1

Sample

XWorm V5.2.zip

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

600 seconds

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:53435

10.127.1.38:53435

Attributes

Install_directory
%ProgramData%
install_file
XClient.exe
pastebin_url
https://pastebin.com/raw/H3wFXmEi

Extracted

Family

xworm

Version

5.0

C2

127.0.0.1:7000

Mutex

JYj1EIwWwj45bGVr

Attributes

Install_directory
%AppData%
install_file
XClient.exe

aes.plain

Targets

- Target
  
  XWorm V5.2.zip
- Size
  
  95.0MB
- MD5
  
  8b571b1487a7ee8b78420b7bdf6f6333
- SHA1
  
  c264397f31a7b4f272a5f5acd51fb70cc55e3cc8
- SHA256
  
  1d2b21fc4690b65ecb6e6fa2364b165290837ec2df8ee6859bdd7afd36e7016d
- SHA512
  
  dccf2b9723c7a4f530d997b457d165a270af7ac01c0cce3b952f7f709727f21d781584bd2bb660efd6d38853ba510c649a3778693c5f08df7d721720f437366f
- SSDEEP
  
  1572864:cXjrCTvb2gXxrCTvbEcU8IrNhMXLe2KOJQ0/4lsb+LLU8IrNhMXLe2KoZQ0/4H+C:cn9gldEeNSjJJ/4XTeNSBZJ/4bT9G+
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

agilenetagentteslaxwormstormkitty

behavioral1

© 2018-2025

Terms | Privacy