Overview

overview

10

Static

static

10

bounty-830...51.exe

windows7-x64

10

bounty-830...51.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    bounty-83037903976438251

  • Size

    56KB

  • MD5

    cb33ed1c247a32ca4f5a58304fcedf2b

  • SHA1

    aedd6efda827c54c14920cf7052167e26883a69b

  • SHA256

    81de4b603818d3408bf6b80e5ba55b0ea48d9e1f82713742f9683e1ae4c6af61

  • SHA512

    985515b7187c4360a386e4982e5e0f50fbb2d52baf3ed33d626a7b47f199006c96cc3468b4c2959bb929991c3b34997c1e94d9f187954ce3e52568e2010cfbd5

  • SSDEEP

    384:IfoCEwCPmtt37GRulm7LZ0pImqTEyPjgmRuptFlBLTIOZw/W2Zvn9Ikn1oxOqhag:7mtt3oAmnmOFUm0FG9LcOqhabM

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

wiz.bounceme.net:6000

Mutex

TsV4Qhz4pSYYlqfv

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bounty-83037903976438251
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections