Overview

overview

10

Static

static

10

422abbc433...fc.exe

windows7-x64

10

422abbc433...fc.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    422abbc433aea072fec30ffcea48a4c5c13f0b9883b3e4782116e253bf33dbfc.exe

  • Size

    37KB

  • MD5

    3c86f4c30e41332ba1108601eb731bd9

  • SHA1

    f385254475231290ec865291b355fcee461cb410

  • SHA256

    422abbc433aea072fec30ffcea48a4c5c13f0b9883b3e4782116e253bf33dbfc

  • SHA512

    f8a126f5afae2123737be05e1b10a090e52b7df03d925577da1f44f4cc6bd4cc35bc9891a97459b148ee32283ba2a6a74fb3aa4968785a93ab0514e31b31099f

  • SSDEEP

    768:ryMg0j1p2gKp72zshZ5rsAi3XFyG9Oe16dOjhmD0v:ryMjU7LhZ5rsA2FT9L16dOjj

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

outside-sand.gl.at.ply.gg:31300

Mutex

fvs1jABc3UT3cETc

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 422abbc433aea072fec30ffcea48a4c5c13f0b9883b3e4782116e253bf33dbfc.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections