Overview

overview

10

Static

static

10

SolaraFixer.exe

windows7-x64

SolaraFixer.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    SolaraFixer.bat

  • Size

    86KB

  • MD5

    28b71b14a91dc144298ac43e725d27fd

  • SHA1

    e6b8bd585e2dabc43d2dbbe6352eac60bdf93ac3

  • SHA256

    c3ea1603378e0bfbf7fcc64643144c0c5c699bcffc8505b68a251d00097a0c63

  • SHA512

    58446084d1e6365d017a0fac0ba10877b7e96a7dbacfb99dc375a65ce5716611cc341653006c043cd3968556c1d2e0559ebbf161c5c25db18ae23716654218f7

  • SSDEEP

    1536:0PJQdYi/z5s3d434+UHnaJCt53ZbHDSXtDq1MO6tXlMFjGkOWCK4vOnOS:2JQdhatn1HnaJCtRZbHDekadlMJDOWC

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

accessories-retrieve.gl.at.ply.gg:13970

Attributes
  • Install_directory

    %LocalAppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • SolaraFixer.bat
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections