Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

XCliaent.exe

windows11-21h2-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XCliaent.exe

  • Size

    80KB

  • MD5

    84ef912e583e2085324aff1b1838ea02

  • SHA1

    4cf9e83bb995c40e1b509090c2523954b19b31f4

  • SHA256

    8ba3b9263bbf0baf8b955e53272b90dca4c7525fd42d1368386aa95ec71a434a

  • SHA512

    b0b9fa353f413f1215bb8d49546a5914e80e96aacdc675c085371ea9f6797e332b77655f96abb99fff4105020f12f32a8b8ad36078a0f68de65bdb724995e56b

  • SSDEEP

    1536:90YS2Xy3ynngKG6H08Dd7Kb2uFUMgNG6O6U9aOynP83yFzr2Hi+:90t2C3UhGwv7KbjF5GG60aOcEiFkX

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

147.185.221.22:46682

127.0.0.1:46682
Attributes
  • Install_directory

    %Temp%

  • install_file

    svchost.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XCliaent.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections