Overview

overview

10

Static

static

10

XClient.exe

windows11-21h2-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    XClient.exe

  • Size

    59KB

  • MD5

    04d52e9acbcf5b8fff39b5c210f4232e

  • SHA1

    b999782927c69bdcb20b7bffca680ef66772602b

  • SHA256

    b5dd71863716050526f62f54547232ef0e0385bf7f206f821e7ac61bec593002

  • SHA512

    e6db90ee94b98259b0baefc4d981c7e060e573b03ab1f7063f8ad21b988b00e52504ebc6778e35a9dc3a0ea62edcc5908dcb047a031682518b17a4ad3e7e5330

  • SSDEEP

    1536:AehaUXr9Jf+vTlpNswlxW6L+b5B76GQ6ndO78+oH+moB:X8UXr9Jf+lpNsu0E+b5DdO78+K+mE

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:21974

147.185.221.22:21974
Attributes
  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections