Overview

overview

10

Static

static

10

Sero-installer.exe

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Sero-installer.rar

  • Size

    45KB

  • MD5

    b725bbb104605bfb6f8c4ff988c7b9d5

  • SHA1

    a73b64a820cd28f0723fe7ba94d19ff6fa2a5351

  • SHA256

    06c033cec50c115b758bc31a763aaf062fc0d997f1f889183172562db2b525fc

  • SHA512

    e3ea6d765bf6b038e22a0ab5beb3b71c9baa658fb46e22669a9873a178dc86358c4a9c048ab3cf570aea27c38210d61d0a4d848bed4c64031d5b60ef64be290e

  • SSDEEP

    768:gNLPnPk7a0bh9HnhDKAfHK1Rqj4D6cyqY/qm9Jrxy3n4AD0wt//3XsZtmr/Lb:qPM7a0brnlHKujC6cyq6qmTxyX4ot//R

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

154.197.124.87:14745

Attributes
  • Install_directory

    %ProgramData%

  • install_file

    WindowsHolographicDevices.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Sero-installer.rar
    .rar
  • Sero-installer.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections