Overview

overview

10

Static

static

10

3060dfc3fe...bN.exe

windows7-x64

10

3060dfc3fe...bN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3060dfc3fef4f36d8712226d46a245dbd6be1a30badab982b91e1cd85127812bN.exe

  • Size

    50KB

  • MD5

    77ca91b6e55138de322b0b921c62fc10

  • SHA1

    cf621d2eecde80a409c35d5662cefe88a9f8bfd4

  • SHA256

    3060dfc3fef4f36d8712226d46a245dbd6be1a30badab982b91e1cd85127812b

  • SHA512

    0fc0bc642623ef86f076fa6d71bfafbf1cc9cbfddb2d44d8ffd7744c6d9c2f1548deb900ae85fd9f069d40d494ff8d7dbb081f7b7dec8552b8ebd87f22fbfcd2

  • SSDEEP

    1536:0Q1Zw+K5/jjV6wTO+bOekp4G60r0MOT/Lg:e5bjMz+bOIA/OTTg

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

24.ip.gl.ply.gg:12722

Attributes
  • Install_directory

    %AppData%

  • install_file

    XClient.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3060dfc3fef4f36d8712226d46a245dbd6be1a30badab982b91e1cd85127812bN.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections