Overview

overview

10

Static

static

10

9b520c0794...0N.exe

windows7-x64

10

9b520c0794...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b520c079411cbfeec0cf3ff1dd32bd0N.exe

  • Size

    111KB

  • MD5

    9b520c079411cbfeec0cf3ff1dd32bd0

  • SHA1

    d53cef633fec92944221f228d3de63272fdad3d1

  • SHA256

    06fe00e31bd25f1dc0db0b5b068d329491c2fe543cc06655a3dbdf69ca1c3b3b

  • SHA512

    be9bd83ea11073b9039ebff6e18007ca8df437a0ee3c31d223fd8100ad7331dc28c1e95b6b1a372538e46c48fa988613d3e522d8faba9cd6c9581f3a2f327c9f

  • SSDEEP

    1536:Y+qFrwBul6SqYK1Q9yEnTI4GZjzQwK5WW7VCn6Ky7FAmu3wtBUniymeq07sZPSTy:vqpwBzSVaQ9yoT2e5BV0WUniyimy1

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

xcode001.ddns.net:5552

Mutex

atLBGvHePglqMeWk

Attributes
  • install_file

    config.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9b520c079411cbfeec0cf3ff1dd32bd0N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections