Overview

overview

10

Static

static

10

c307b94dbf...aN.exe

windows7-x64

10

c307b94dbf...aN.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c307b94dbfd8ef27f3511a37b25c03ab4bfe3c19536ad674224d52eb7f03312aN

  • Size

    51KB

  • MD5

    ccd7e3831e141e4ec4b9c97ff61fad60

  • SHA1

    0b2aed2367ebffe6f35d92b375c83ae3930a0a70

  • SHA256

    c307b94dbfd8ef27f3511a37b25c03ab4bfe3c19536ad674224d52eb7f03312a

  • SHA512

    1ef2a148caf83eafd4f17992d1697a432e3ffc7c9c338f887ce591f398537b6ca9f4c2bac77d0fe0e0ba152bcb7d5b780f1c6114b532de75bb29749b42c03fb7

  • SSDEEP

    1536:NtqbGNM42TpLxaaMzbUsKtBrmD/WOHEW3WQK:Ntl2BcaMzbUj1OHEn3

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

22.ip.gl.ply.gg:57731

Attributes
  • Install_directory

    %Userprofile%

  • install_file

    USB.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c307b94dbfd8ef27f3511a37b25c03ab4bfe3c19536ad674224d52eb7f03312aN
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections