Overview

overview

10

Static

static

10

5b00d0bf67...d9.exe

windows7-x64

5b00d0bf67...d9.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b00d0bf678928bc76cc9659a0deadf601a0507b31e836648578ff175af54bd9

  • Size

    31KB

  • MD5

    3f69abd797dff2a07d346d8b1810f88b

  • SHA1

    80f286f61a00bebef4c555c2c32d0b03d6910fb5

  • SHA256

    5b00d0bf678928bc76cc9659a0deadf601a0507b31e836648578ff175af54bd9

  • SHA512

    0ba632fc961ca17861d675b1934867e24a4d1ec90ee3910235154f7ffba737f0cbb2ea06313d4db120c9e91298b94e0cfd80923dbb8f99b6d7a8efe88a56981c

  • SSDEEP

    384:k0f/uBJl6q3z2mrgHsgQMpOKgHgrzphLZziwrtHWjZKC/n3Ce/LR+ptFFBLTm9b3:lqJluIYWuThrt23/nJcF+9HjO/hm/3+

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

reference-roll.gl.at.ply.gg:65104

Mutex

0dr7M5Cde3nWdlRw

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5b00d0bf678928bc76cc9659a0deadf601a0507b31e836648578ff175af54bd9
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections