Overview

overview

10

Static

static

10

Null menu.exe

windows7-x64

10

Null menu.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Null menu.exe

  • Size

    484KB

  • MD5

    cc5fdd81e44d6b85b629544133820a27

  • SHA1

    d5e8421ac31abddd23f2b00841d2ed5f671d2670

  • SHA256

    685247d0074365beb7fdd3942878bdf2fce06e7b1049f5cc803a50fa4e757d91

  • SHA512

    398b99025320847042717fcfb5a6f9b15f95583a7304f4e8315c1746c58ed46083cf133d9893ee6d187068a4c98216c15af6d010ec84119bc3fb9e8bcabde9e4

  • SSDEEP

    1536:GUU/LRr4lW/f4RQYvX3yb+bWwpfkABQBf6kOJZYJ/Hi6pkRpuuoRzakOJ+ON8xqE:GT+8XCnXCb+bWwANOJCJWkH/G4Z

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

193.161.193.99:26331

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Null menu.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections