Overview

overview

10

Static

static

10

25179f1c63...ce.exe

windows7-x64

10

25179f1c63...ce.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    25179f1c63031ba0b4daf7ff315f008d6f794eed2b5d486c796457cd4a8b4bce.exe

  • Size

    237KB

  • MD5

    34d6274d11258ced240d9197baef3468

  • SHA1

    21f0e4e9f0d19ecb2027cbd98f6f7e1e5c2be131

  • SHA256

    25179f1c63031ba0b4daf7ff315f008d6f794eed2b5d486c796457cd4a8b4bce

  • SHA512

    54f123f82a53b402bbfdfbf5da99ca84cdff4ba1ff1494cd2c983541fb100a8239e799de2e1f4d2de189f1b31bcd1354c5f88b726424bae055053b57c204ccfb

  • SSDEEP

    3072:L+5su6jTFr992KO/WgLLAsNeDF5nI0PGIj9lua/Obw0hFv2PCWpIdk:bPr9oL0sNOBTunbw0/5Wp

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

applications-scenario.gl.at.ply.gg:53694

Mutex

LkatwdFtbmAdPfGj

Attributes
  • Install_directory

    %AppData%

  • install_file

    Wave.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 25179f1c63031ba0b4daf7ff315f008d6f794eed2b5d486c796457cd4a8b4bce.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections