Overview

overview

10

Static

static

10

2b2a240fbd...06.exe

windows7-x64

10

2b2a240fbd...06.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b2a240fbda2933b546a6d1b495d21878b9bf67da1c7e5b4cad29c8b82c5d706.exe

  • Size

    350KB

  • MD5

    8090c678b1ab88d330d94a8012682263

  • SHA1

    062e28c4a590a278ceff6a3931498d53db6812ec

  • SHA256

    2b2a240fbda2933b546a6d1b495d21878b9bf67da1c7e5b4cad29c8b82c5d706

  • SHA512

    ecd6b917eab7d2e62006e58da5e839af15ef6abdf1ecf35dbfe2f6e354ef81e5fe23254480e5e6e5d8dd843c954bb23ef1331132485f08aa7737f0d27d2634a8

  • SSDEEP

    1536:Fnnl3cS+NOAiebtmUcpCzb6HmnIOkPTbepp65U:FlMSSOQbtmpROkPPevSU

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

methods-availability.gl.at.ply.gg:20557

Attributes
  • Install_directory

    %AppData%

  • install_file

    Discord.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2b2a240fbda2933b546a6d1b495d21878b9bf67da1c7e5b4cad29c8b82c5d706.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections