Overview

overview

10

Static

static

10

d5ff6ad060...7N.exe

windows7-x64

10

d5ff6ad060...7N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d5ff6ad0607ef89b71aaea7bc9e09c200451e5572a93eac81097fcc3d5627ec7N

  • Size

    179KB

  • MD5

    6b70014525eada0a69cd50e7e5b960c0

  • SHA1

    ba1cc4bf8cf7464e9c6c7b2842c67133698d4c68

  • SHA256

    d5ff6ad0607ef89b71aaea7bc9e09c200451e5572a93eac81097fcc3d5627ec7

  • SHA512

    210e0d40c9f15480b1a1ab4af2ab36b0975a020d6d82b99a906acbd5c73a1e774f3f89c34ebdb254c3ef7b86652c9a1a581c40a95e62927c0e9896f4ebcf9c7a

  • SSDEEP

    1536:zuF8fZAAAfV2czEms9BuMEpRBrb4DFqg/jcqxo65FOOUkJzZBaOEq:1fPyzE/ruM03b4R/bBFOOUuZIOEq

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:45140

video-passenger.gl.at.ply.gg:45140

more-wow.gl.at.ply.gg:45140

sample-trailers.gl.at.ply.gg:45140
Attributes
  • Install_directory

    %AppData%

  • install_file

    Windows.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d5ff6ad0607ef89b71aaea7bc9e09c200451e5572a93eac81097fcc3d5627ec7N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections