Overview

overview

10

Static

static

10

dfssfsd.exe

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dfssfsd.exe

  • Size

    262KB

  • MD5

    79ed83ae457c14ea76de0de40cd6c568

  • SHA1

    d8b899926d10e0c51f974c74caecfcd852df1bc6

  • SHA256

    6568290219143ded9b1fd8ff0e6e3339b5591b1530a9be673352dd663807bc12

  • SHA512

    6981fbc480c9fe8a5f2b33190cf7d255a22e421b296565084afe326c1692b324b8ab8bccdd0e7dd8e4800d522f2ea6b3b80d0cb39fce25a345fe74a3ddd0a5d2

  • SSDEEP

    3072:pOYQIOeaA+biSDW1O1rhtctZTxCiVnFvHnlRxHu7llkXrG1:4Yfcb5HcTxCgnFnb1YnkXrS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:7578

dark-hammer.gl.at.ply.gg:7578
Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dfssfsd.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections