Overview

overview

10

Static

static

10

$77Client.exe

windows10-ltsc 2021-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    $77Client.exe

  • Size

    36KB

  • MD5

    d34ce882198bf4b647391e626aa7479c

  • SHA1

    4c6ba05c0a3b7fef8692a1ed1897a8d52c7dce7d

  • SHA256

    199ee3f18851c782245dcab588d564a6bf478a8e6ed58a24282c5d0da2b13b57

  • SHA512

    5c51d583858f37102a55fbe472aab4f05925a800ddcb1e2d2b86643b8793f60a0002fb95853822c66df9b61479a45ea22e668b63d823112a037c45f608e8a538

  • SSDEEP

    768:nFeJlFivlhnUH4o0+1Rxe6NFWPh9GTOwhao9FXkrI:nwJlQRUYo0WHrFK9GTOwoo72I

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.0

C2

45.139.196.128:1111

Mutex

I41RJCTV1NVWwUi1

Attributes
  • Install_directory

    %Public%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • $77Client.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections