Overview

overview

10

Static

static

10

Loan.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Loan.exe

  • Size

    73KB

  • MD5

    b6302423d9a816153f114c046d6a27c9

  • SHA1

    0f1ccb4508c03b77811a48b253660f4700094111

  • SHA256

    eb5a47c8af4e9cc519079b83405e82cb9634da85068dbddd0e94fb35bf4d3d5d

  • SHA512

    604dbdd5a54f9744d59c3fb8e0d0b09445e0d5bc18f1a572e1b2d38dab1ab72b793c098435ffb0dbc725acf15988c34af7393e0d01ba99ffccef8a569e4b1ee0

  • SSDEEP

    1536:s+QHJJwHe7SfmnoMYJg52J4YMuhQb1P0do+t1t69XvCkOMkeJoM:JaS0oMbKhQb1sZ1kOMkzM

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

language-pattern.gl.at.ply.gg:63760

Attributes
  • Install_directory

    %ProgramData%

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Loan.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections