Overview

overview

10

Static

static

10

3a8cdab4af...e7.exe

windows7-x64

3a8cdab4af...e7.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    3a8cdab4af88c1980a7f815a4321e56b7257878aba80261aa15364821ff306e7

  • Size

    41KB

  • MD5

    0e76a74db2fd79ffee7dc5eca29067b3

  • SHA1

    90027270d56e9499d4d772a294718843dac44ff3

  • SHA256

    3a8cdab4af88c1980a7f815a4321e56b7257878aba80261aa15364821ff306e7

  • SHA512

    ed9bf3bea80e2584dca910d73335f54b4d629294a695f408f0dc341bdb2cb4262dae67565cfb3ae1d170f864d097db58ed5e976d6d9950dcb456d4e7a8522838

  • SSDEEP

    768:QRPD9OQhx/BV3Tw4hFzVFE9jnOjhRbOds4S1EAd8IIR:Qd9OW/V3U4hnFE9jnOj36dS1EAd8IIR

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

127.0.0.1:7000

wime7.hopto.org:7000
Mutex

4i2iVsaByzGYeJ9b

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3a8cdab4af88c1980a7f815a4321e56b7257878aba80261aa15364821ff306e7
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections