Overview

overview

10

Static

static

10

setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setup.exe

  • Size

    41KB

  • MD5

    8eab945fee9e24992a9f4175990b1f19

  • SHA1

    b41956b072c8bf20fd71fab69b9fd3460da13306

  • SHA256

    484a30b81cf3769281feb290886357834d18c2022a00394a5c591417fe0c5603

  • SHA512

    52b4063529342d62de72f75ffafbf9f4fe47993f5facb012fd3990662d2c08d5fc426183321ff6869cbdd2d30aec77eabc75cc5bc8680fd723b60afc0b48cd29

  • SSDEEP

    768:psydlfynBbCJvx5Ri0NTxtYJF5PJ9OACd68OMhd3E1V:psyfqnBbCTri0xfkFz9hE68OML0

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

members-korea.gl.at.ply.gg:11075

Mutex

9HyyMtIn425lv2KS

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • setup.exe
    .exe windows:4 windows x86 arch:x86

    Password: nigga

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections