Overview

overview

10

Static

static

10

b4bbc10120...1N.exe

windows7-x64

10

b4bbc10120...1N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b4bbc1012005092e6733ebfafbf36ecf7299a5daae8efd47c15e0269ba5581d1N

  • Size

    39KB

  • MD5

    e3d6d70964cb1dee7c881ecc2392c6e0

  • SHA1

    36c95f2fb67280ade55d5e5a210f8f0048fcfcba

  • SHA256

    b4bbc1012005092e6733ebfafbf36ecf7299a5daae8efd47c15e0269ba5581d1

  • SHA512

    7c71c695c17656a807129e9cc31c32cead584c480fb5e8b699f564a3beaf1adf11b194dcff3fb2eb249edf5754d35c03a5a52e3e0fb24d0aef6ea26f71a53485

  • SSDEEP

    768:oHy/gfUevnMshwZM5EIDPiKuukR7LKtTfFWPt9e96cOMheadw:oHyCNv9hC8EIbiKuumnSFe9e96cOM07

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

voice-engaged.gl.at.ply.gg:48359

Mutex

f3eBZMe3wcJmG6S2

Attributes
  • Install_directory

    %Temp%

  • install_file

    svchost.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4bbc1012005092e6733ebfafbf36ecf7299a5daae8efd47c15e0269ba5581d1N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections