Overview

overview

10

Static

static

10

1209c3df30...f0.exe

windows7-x64

10

1209c3df30...f0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1209c3df30d7d53edad5c43e122e5c14e350e9d229cdf1e263fd16ef22f485f0.exe

  • Size

    296KB

  • MD5

    396ef18c45676b0074e41dc2212e06d3

  • SHA1

    fe07d7d57a66b71611086771260163432a9e7b55

  • SHA256

    1209c3df30d7d53edad5c43e122e5c14e350e9d229cdf1e263fd16ef22f485f0

  • SHA512

    3c46d42d0f054ebda330cda1a37aeaf833c697c78f476fa1db80f888608582e7fddeed8daab0e0f373ad6446131e2323f335d787b5a7b58032adcd3333bebb29

  • SSDEEP

    3072:TvNYzFFE9jZOjmAZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ+ZZZZZZZZZZZZZP:z8E9Z+GIIIIIIIhIIIIIIIIIIIIIIIU

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

158.247.200.45:7033

Mutex

1kxWUkLkK2xrr7Fy

Attributes
  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1209c3df30d7d53edad5c43e122e5c14e350e9d229cdf1e263fd16ef22f485f0.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections