Overview

overview

10

Static

static

10

sex.exe

windows7-x64

10

sex.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    sex.exe

  • Size

    38KB

  • MD5

    1e3a67be8fb7a8d4d867734946f17759

  • SHA1

    53621e746c2aacfd7a7699b7ec0aa749e13cb4cd

  • SHA256

    dc6e30bf1528ee1c71532c1765a3a1ae4a13bce6d1c04526befc4fd0e5b6eaac

  • SHA512

    aa596ebc89a58ec6670b996e28a6a81e7b37e524fe11b8986dc15fbc3d7fea40f4fe4959295730bcbad674375e0642562e9ab60f1f5e0d06008d6354d514205e

  • SSDEEP

    768:1ypWCI+GtIgSimoTinbSXFyw9BH76rO/hkPyEnlS:1ypWQGtIgHQbEFr9176rO/CplS

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

17.ip.gl.ply.gg:2867

23.ip.gl.ply.gg:2867

<Xwormmm>:1234
Mutex

0La2WS6weCP4iiox

Attributes
  • Install_directory

    %Temp%

  • install_file

    update.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • sex.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections