Overview

overview

10

Static

static

10

1728074765...ed.exe

windows7-x64

10

1728074765...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    17280747651c65888a5d5ac545724e489642bc491cc1ffd341e9d7640d9cf7ca383b5c9019315.dat-decoded.exe

  • Size

    72KB

  • MD5

    b5fdff62df0afd88fc8173df7201e416

  • SHA1

    2bb2a6d68e50d3e7e263a1549ce82696f8d1e9e0

  • SHA256

    8abca677b866c3f7bb95524230d490a9f33e98d1697a9f25bd0798f3e016f936

  • SHA512

    8b811ec49747b269a38cab690a79d461b38109da7b5eb37c5eb8bf27cb11dc803f48a7bfc4424ab773b3bcad086e6458c6ae7b8d9360b008fed4a31583b39177

  • SSDEEP

    1536:d8V8eCI/+l22AylDL27+bHNBVxpfaa+ni44+OsU2X4iWU:dxI/MZ3C+bHzsji44+OnuAU

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

toskaadmx.duckdns.org:7000

Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 17280747651c65888a5d5ac545724e489642bc491cc1ffd341e9d7640d9cf7ca383b5c9019315.dat-decoded.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections