Overview

overview

10

Static

static

10

setup.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    setup.exe

  • Size

    41KB

  • MD5

    ca312e982c9e4e5664ef45e8cb2be9cf

  • SHA1

    7612a439bff3f87eba20f95e8cf33f5151d35bad

  • SHA256

    ae04a7cde21d4ee9eb3ba296a680ce09b7a6f19779969ca0d257e7d8c655a51d

  • SHA512

    1ee70f59d955270fd7e25e1ca3764a6090e083587f7951abe8091b2b230ebd030406f12e3bd25283729da2b7285b5db165d6dc4f71f038e71e5e3af9ae6722d2

  • SSDEEP

    768:FsydlfynBbCJvx1li0NTxtG2JF5PJ9OAZ68OMhj3E52:FsyfqnBbCTji0xfG+Fz9hZ68OMFL

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

to-reconstruction.gl.at.ply.gg:45235

Mutex

7PQJRDYU7PWRPnXx

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • setup.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections