Overview

overview

10

Static

static

10

f377830552...28.exe

windows7-x64

10

f377830552...28.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f377830552feed348f624df056a59f1d81a5b35e50dedce76cb1a2c7eaf4e828

  • Size

    185KB

  • MD5

    59bf27a50409111ff7cdc04135950f56

  • SHA1

    200436389aa52c35c4228e5563b6d3761b0f98e9

  • SHA256

    f377830552feed348f624df056a59f1d81a5b35e50dedce76cb1a2c7eaf4e828

  • SHA512

    0014550dc47de70a690ea16f06576a37f768d30dc5825d7cc57489cfde2f08320afd2ff9fb55a1a4325f1751f38ce6109e2dee1771222ff10920efc4b1cbf8e4

  • SSDEEP

    3072:fG+gshlqbml+jsBO/w9SBz65/M6If+3Js+3JFkKeTnF:fSshlqb0+jsKbxBt25

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

e-shark.gl.at.ply.gg:31567

Attributes
  • Install_directory

    %LocalAppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f377830552feed348f624df056a59f1d81a5b35e50dedce76cb1a2c7eaf4e828
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections