Overview

overview

10

Static

static

10

test4.exe

windows7-x64

10

test4.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    test4.exe

  • Size

    39KB

  • MD5

    45a86083372db89905c3aef1ca590c41

  • SHA1

    bc27146138f0de9896f0fb171cb9c3f4ece71bba

  • SHA256

    a357af1a584541dcee1eac7380005cf0c2416e7c5370dcd65f0b2c1536582677

  • SHA512

    faef7215bc07cebe2303224362dac491364240dc02d093a0b865fc46d27dfb0dc405db484d096932da5dcf2a4e2ad35a94ce7695648dee7690e8379c372d1b8d

  • SSDEEP

    768:ddHDw0pF163l6gHlLJKuuwhSZPypufFWPa9b5wN6POwh1aubx:dNDw0pF163smVJKuuwhSMEFv9ba6POwR

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

web-amend.gl.at.ply.gg:59501

Mutex

2oRL6loKAXQQDvov

Attributes
  • Install_directory

    %Userprofile%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • test4.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections