Overview

overview

10

Static

static

10

Xclientv5.exe

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Xclientv5.exe

  • Size

    239KB

  • MD5

    2030687b0d5b16b682d24d87580f12e0

  • SHA1

    772c2a7921e6bbd0cc894839950808416e3aa868

  • SHA256

    86a6d3457f54a19f01ccff1d8be3086ea5fa10ee55d91024513302742c3c8cff

  • SHA512

    d03a7175816f2fe92439146a8c890f37293588de75de1c2429ae9c865b6da636a57a1f57c5c6b7ac2197362729555d087c9961b02a62d83b396d47d18b8aad73

  • SSDEEP

    1536:MLDyMuWSyOkri/Z+63xOZ/bkMKEnQu16JT9pOX28yUnafERKq9AB:CDyMu6VeBxOZ/bkn/OmmaAKqOB

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

t-abc.gl.at.ply.gg:50128

192.168.1.45:50128
Attributes
  • Install_directory

    %Public%

  • install_file

    helth.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Xclientv5.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections