Overview

overview

10

Static

static

10

78b4498d32...0N.exe

windows7-x64

10

78b4498d32...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    78b4498d3217b2f30a75256354fe8340N

  • Size

    30KB

  • MD5

    78b4498d3217b2f30a75256354fe8340

  • SHA1

    2085a49272ad66ac3155e7774216c4375977ae64

  • SHA256

    d3f2313e110eb5ddc92f91b46b05b8dc359c3f77e0ae00ede07eb7327bf1edc5

  • SHA512

    f2ea576d4e80a293dac8fbcf60a174f236edf5a0782564cfe7bb77d95c622c7574b0a2c80e42708ff7bc67c90d6aad03701820c9591e721b0b9390933ee41cc3

  • SSDEEP

    384:aeAwIGmeffcbWICWv/0ILZGPc7g0hYACSqRES42uRugtFuBLTIOZw/WVnvn9IkVY:iecbl/b37gMYAoREH2uBFE9RGOqhYbS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

177.37.181.52:4923

Mutex

Eg6pPfLVwtDcDeuQ

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 78b4498d3217b2f30a75256354fe8340N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections