Overview

overview

10

Static

static

10

COuRt.exe

windows7-x64

10

COuRt.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    COuRt.exe

  • Size

    33KB

  • MD5

    6288b5d55cae147b10d8116d0a103f61

  • SHA1

    5d6ebbffbfbc5e7a9e773051b66957b079d57e79

  • SHA256

    2c524e8d66efbb3ab6918c97a21cb8a2a5b4ae3cec3e29212384597c56c1f1b8

  • SHA512

    96f440e75817e3623c4771389559eecb5bb093e92a3ad0b764963ca648ffeaee58f08943939f10901d7deb40b8f1aa97df01402e4689b0323fd72070fa67cbbd

  • SSDEEP

    384:kl+PkjD9+E5MFs7iui8L7zdM42pfL3iB7OxVqW9SRApkFXBLTsOZwpGN2v99Ikuv:Q+CD93W03C42JiB70qVF49jWBOjhEbv

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

six-usb.gl.at.ply.gg:49722

Mutex

Ph531DZXeuDBo12H

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • COuRt.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections