Overview

overview

10

Static

static

10

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    839e84b4e3ca1748a35da3e3e3fddf2fe3cdd2562a50b5f6541a76297780f2d8

  • Size

    43KB

  • MD5

    e383ebbf8214658aeac1ad44554d245e

  • SHA1

    36d0e642856bda49b1dbcb4c57e8fcfda55d1fe5

  • SHA256

    839e84b4e3ca1748a35da3e3e3fddf2fe3cdd2562a50b5f6541a76297780f2d8

  • SHA512

    dafdd4625dea291d5885b4e47cd3a57a05dee4941279a91bad6f7f7b8eaaa84eb0250d7d7a07e4b274f613b3498d3fd01304ccc9705932b3ed9485bc4aa7ab2c

  • SSDEEP

    768:YZzGU8kyq5bzbTfFX8WuFZ4hJF5PC9O9h68OMhc3/O+nMN:8zf95/b7J894Fc9Uh68OMWRnMN

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

89.213.177.177:2233

Mutex

FPJegdtwEUUxYwHG

Attributes
  • Install_directory

    %ProgramData%

  • install_file

    Java Chacker (32bit).exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 839e84b4e3ca1748a35da3e3e3fddf2fe3cdd2562a50b5f6541a76297780f2d8
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections