Overview

overview

10

Static

static

10

9b784a4558...7N.exe

windows7-x64

10

9b784a4558...7N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b784a455868d9670106d82c504421506b94c040f1aa8d3bf129d6306b4db287N.exe

  • Size

    76KB

  • MD5

    51b18ca06caef067d41e3f55234ce9d0

  • SHA1

    5346383ed9415a479c9dad0dbb7eb6ae6a5545cb

  • SHA256

    9b784a455868d9670106d82c504421506b94c040f1aa8d3bf129d6306b4db287

  • SHA512

    48ec46d289f9075bd89682a070a79bc5ed832fe1fb6b7c31e2a4331550bddc2013892784e0fc9433035800b188e9a683fc1bfecfd1f75678db18be87c16b6cbb

  • SSDEEP

    1536:uAyhYQDNkoAVOV066wJZzZ+bDyNiQw4gH6DD6O1+WPeURcb:KiEmoAwxzZ+bDys7OsWS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

week-measures.gl.at.ply.gg:52951

Attributes
  • Install_directory

    %AppData%

  • install_file

    BrowserUpdate.exe

  • telegram

    https://api.telegram.org/bot7409084272:AAGfvawizs5psSM16en9CLFzI0ZQnCNB3SA

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9b784a455868d9670106d82c504421506b94c040f1aa8d3bf129d6306b4db287N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections