Overview

overview

10

Static

static

10

8d3b3b5828...6N.exe

windows7-x64

10

8d3b3b5828...6N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8d3b3b58283725967328f4d628cbf1929ac89ee5270494a16a2a4e22b6a45b86N

  • Size

    39KB

  • MD5

    7a2b5cc8ad50e89330e91cfe791e41e0

  • SHA1

    f958e0c01d7be3f5aabface84270884b8610d59e

  • SHA256

    8d3b3b58283725967328f4d628cbf1929ac89ee5270494a16a2a4e22b6a45b86

  • SHA512

    ff7f56a6412b024eafe6905d377d131525b146f82d627666d712c122d4f313cf06e60684e3e1414d2488881f81d2e2fe57efc187213f6fa5f9d63069d4ff0625

  • SSDEEP

    768:2S7xT786k6o3jkFya1WtsXWz7OX3T49UcsF5P89I80OMhb3sCfB8:FdT78F6o3jAy/CXW3OnTZ3Fy9IzOMFFm

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

Mutex

uBcCXaQo76hSR1DB

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8d3b3b58283725967328f4d628cbf1929ac89ee5270494a16a2a4e22b6a45b86N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections