Overview

overview

10

Static

static

10

3ee3b553ee...ef.exe

windows7-x64

10

3ee3b553ee...ef.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3ee3b553ee4a8cce060c42655c26351a38f58d16f679430a9bb53e2df822a3ef

  • Size

    59KB

  • MD5

    f09d02d4eabed90b79e26238dd94b408

  • SHA1

    33ee33ddd4421021da50d12473d34570b46deaf2

  • SHA256

    3ee3b553ee4a8cce060c42655c26351a38f58d16f679430a9bb53e2df822a3ef

  • SHA512

    784218806c2da6bcf6d0ada3b47c84dd5eb9db28a907947049c037aa8e1d84220838a3873405d11d865d6f9472d05b52f0857c3276a9fa6b92b42d7b52ce3d1f

  • SSDEEP

    1536:GA2y8zS8V+l08cD4GxkbkA8KW06klOtZEOxm:Ueq+l08ixkbkNqOtFm

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

otherwise-puzzle.gl.at.ply.gg:51848

Attributes
  • Install_directory

    %Temp%

  • install_file

    laksresa\nneiq.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3ee3b553ee4a8cce060c42655c26351a38f58d16f679430a9bb53e2df822a3ef
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections