Overview

overview

10

Static

static

10

0x00060000...35.exe

windows7-x64

10

0x00060000...35.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x0006000000018b33-35.dat

  • Size

    63KB

  • MD5

    a0dbdf3af38ead2237ccb781a098a431

  • SHA1

    1434296af6c5530eb036718e860490e0adc3321a

  • SHA256

    6f483da6b36646bf6f33db0c210bd3683ff29428a44d916a2f26a4240c1a9901

  • SHA512

    dd7dc91a2e09b0c3906efbb486fb84d0289dc61338afd75d203f1ab2f49556c9523a8a9abc913363a45dde8194f5b2ee9d3d659807250047331944c39006edc3

  • SSDEEP

    1536:E/t9zU0rqtkpsW3srbmlE2X1X6FfOc8AAGZ:EYkpsasrbmVlYOc8ZGZ

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:30683

operating-niger.gl.at.ply.gg:30683:30683
Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x0006000000018b33-35.dat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections