Overview

overview

10

Static

static

10

XClient.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XClient.rar

  • Size

    15KB

  • MD5

    d07e02f6b54cd23d4109d7ba9d69deed

  • SHA1

    dd6ce81efa0380efc581c2c348a68355204d5706

  • SHA256

    32f1c54c7a43a06bdf4a67fe4840dbe704ed4b44fec11c0b5e9ae985eaa0c756

  • SHA512

    7e290f7e1fb30f60996b73492634662191a2980d4cdd33f7631711beb8427e706e071cd0d1ec55219c659563238a5389b3da5bf9dcd32928f5152d5bf67449f1

  • SSDEEP

    384:tBrp7RzNWfEWoKXpXnMGlaA1JMYdO/vM08+HhV:tBrZFYIUnla2JZQ8YhV

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

127.0.0.1:7000

Mutex

KuwBwFrm0Fmi9J3k

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • XClient.rar
    .rar

    Password: 1

  • XClient.exe
    .exe windows:4 windows x86 arch:x86

    Password: 1

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections