Overview

overview

10

Static

static

10

2024-09-09...ar.exe

windows7-x64

10

2024-09-09...ar.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-09-09_9e13076001d59c2b50968e6f1f9531a3_hiddentear

  • Size

    271KB

  • MD5

    9e13076001d59c2b50968e6f1f9531a3

  • SHA1

    25ee3cb09a1fadffa71f5f28a22166c8f01c1bd7

  • SHA256

    75448819c4887713e7e8302b04dd7dc4f454a65584b04582739e49d7ff42be48

  • SHA512

    d71037a9b094ce9e1e3dc202b2c1c9c056aa9a57710c8dd351b412b88db38a97dbcd0e5c3ab53d33e7b0a494ef3e895a94dbe5c608446ff14733267541da07f1

  • SSDEEP

    3072:B8dyalsRhLbve71I0O4w6NBz65/M6If+3Js+3JFkKeTnMM+lmsolAIrRuw+mqv9m:B13dbb8xBt25c+lDAA

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:1093

75.216.18.223:1093
Attributes
  • Install_directory

    %AppData%

  • install_file

    ChromeUpdater.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-09-09_9e13076001d59c2b50968e6f1f9531a3_hiddentear
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections