Overview

overview

10

Static

static

10

676301ceeb...0N.exe

windows7-x64

10

676301ceeb...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    676301ceebb37d07c71bfb2d46abb140N.exe

  • Size

    66KB

  • MD5

    676301ceebb37d07c71bfb2d46abb140

  • SHA1

    dbb48e155ed6180dd0ecaf5800a6d7342592e178

  • SHA256

    1d685762bd1e0e8961dbc759e18357eb69f91f563464b85ba78a869f6e18d1a5

  • SHA512

    18072fd3babc5bfec7198a98249e5d9fcad27469fbc1ae1a69dcfe520a2138147a417c877d5742c00d7e5906324b90df860f82571e9f0250944cfb83323c0667

  • SSDEEP

    1536:/D/OldYf7ObsjqFSD+rfkbAlQ1KvUS6WhOZwpJTB:/D/KqjaSir8bAl/9hOZw/B

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:6985

21.ip.gl.ply.gg:6985

gl.at.ply.gg:6985
Attributes
  • Install_directory

    %AppData%

  • install_file

    System32.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 676301ceebb37d07c71bfb2d46abb140N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections