Overview

overview

10

Static

static

10

ROBUX GEN/...UX.exe

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ROBUX GEN.rar

  • Size

    19KB

  • MD5

    ca3d797e368c69b0683c72fb38646fb2

  • SHA1

    7e0a6220f514238ad03b6a8b3e8d7a45da756c52

  • SHA256

    e4426e7d3938b2634c41076d3b61500e7243ebc4ad08589fadbf9fdde362e1c1

  • SHA512

    3827205f13200faa3e71be66d3400cf7fcdc6759d3e6f6a05d0108501e8ffffe772b1eca1e8fc555a3989258fcabf58c82000370ec4c7be6b2275bc16bb7dd84

  • SSDEEP

    384:tX4o1VdC+C0hCw+knLjVJRaj9x/NZ1QTNqc+lbUH5T4XFtywPt6wUuxyzS8yNUF:tXFrC0hthVJRaxx1Xr7bwR+FtMKGbqc

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

college-immediate.gl.at.ply.gg:64287

Mutex

IbqnfkFl8ZknHWMd

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ROBUX GEN.rar
    .rar

    Password: 123

  • ROBUX GEN/FREE ROBUX.exe
    .exe windows:4 windows x86 arch:x86

    Password: 123

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections