Overview

overview

10

Static

static

10

adb457a925...4N.exe

windows7-x64

10

adb457a925...4N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    adb457a925a23c0051ac0f18ad7fdb8e2c64302d15d0077cc3182c7f74257994N

  • Size

    67KB

  • MD5

    cc64308d86b707f3fc9eda4630eb85f0

  • SHA1

    783f4cd9bfadb5c561b177f30b1cd18211a08c04

  • SHA256

    adb457a925a23c0051ac0f18ad7fdb8e2c64302d15d0077cc3182c7f74257994

  • SHA512

    0da4a99489c61a2d4ae1bd098f7c3039111b36d26f24ed66e514691b1f2cd1905f71cdbb1437cc39d9d7e55820a12fa082e2dc6bc088a8dbcb9d0bc3d3e77c76

  • SSDEEP

    768:ZyH6ce2zT+BEEm/Dm4zO7iYoCGSbc+hTYGEQKQbjA7kkHi3e6VRA6+ZgIYOShWZ/:Iac/Ji7noCGutRbjA7kkSq6+6IYOSX+

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

91.92.241.132:7000

Attributes
  • Install_directory

    %AppData%

  • install_file

    USDT20.exe

  • telegram

    https://api.telegram.org/bot7206931180:AAEOX3tXBGQztAH7K_TaFzjXLXP1KedKPeA

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • adb457a925a23c0051ac0f18ad7fdb8e2c64302d15d0077cc3182c7f74257994N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections