Overview

overview

10

Static

static

10

0a6b6f9b9c...8N.exe

windows7-x64

10

0a6b6f9b9c...8N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0a6b6f9b9cbf8a15660c1d5472f620a16aedc318041c00d59bedf220e697e408N.exe

  • Size

    85KB

  • MD5

    70447dbf18d9dc8426a9900ad6c28700

  • SHA1

    ce72e3dafd211af37ee84c07850ecf4b126fdee8

  • SHA256

    0a6b6f9b9cbf8a15660c1d5472f620a16aedc318041c00d59bedf220e697e408

  • SHA512

    87c41914eb2297fc510c65a54957abdead439a1b42cb3a3d1593474d3d3e8a42e42e8341521e12e60fdd0385243dfcb48422e0d84e32d417e08249c963fd58ce

  • SSDEEP

    1536:wgLOZCLbRcbwXpTpli0/eC/CiAQRbAwO4c06Qe6ulOfBIWZ65hUV6faF:NLECL9cbIf6KRbAm6QelOffeLaF

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

asia-capabilities.gl.at.ply.gg:63098

Attributes
  • Install_directory

    %Temp%

  • install_file

    Explorer.exe

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0a6b6f9b9cbf8a15660c1d5472f620a16aedc318041c00d59bedf220e697e408N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections