Overview

overview

10

Static

static

10

5273cb22c2...0N.exe

windows7-x64

10

5273cb22c2...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5273cb22c232b6eb9ceca349f32eaa20N.exe

  • Size

    39KB

  • MD5

    5273cb22c232b6eb9ceca349f32eaa20

  • SHA1

    08694b01ab1dfec6b29d6e407c7f138989449eb7

  • SHA256

    bf501a4295f84dc508578f212756f85423c0ef7c77e8848efeb4ad11d509a872

  • SHA512

    5a1a41113d3ca1b8df0f570097a69af594a764110ad429b9d6ad4d746a4679491de8f7560e60eafa9554a61bde22b9ad885bcd0d1fe7542bfcd011c5d2a9f5c8

  • SSDEEP

    768:i0ND+ctkzYcNMKdj3BAFWPa9kQt6POwhBriO65c:i0Nqctg1NyFv9kc6POwLmOIc

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

Mutex

nZerCN8EfXX0CE9Y

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

  • pastebin_url

    https://pastebin.com/raw/8tBnTZMx

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5273cb22c232b6eb9ceca349f32eaa20N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections