Overview

overview

10

Static

static

10

XWorm V5.3 Bin.7z

windows10-ltsc 2021-x64

7

XWorm V5.3 Bin.7z

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XWorm V5.3 Bin.7z

  • Size

    29.0MB

  • Sample

    250203-rtl7mavqdm

  • MD5

    0ea984ec2d550a4205fabd911f973a6c

  • SHA1

    71307409e69eb60fe612315e09d4109f91cf23c9

  • SHA256

    6b7c8ac18f492b4536307f4680cd40a9990bafc716d451575ba46c124c3f07b9

  • SHA512

    7bdb043850bbc32d41872b4090426e2193582b139e8be25972b25b9f9fe3a1c54e089a5738a78a804211031a010b8e9a6bd8d983cb534fb34d4a0f87e9484eba

  • SSDEEP

    786432:WqVzpgbD+4aZ/INeMVKyBMtD2Op14tMIADxrHLfygiw:dgbD+XtFMVKyGUuI4ZHLfyK

Score
10/10
stormkittyagilenetdiscovery

Malware Config

Targets

    • Target

      XWorm V5.3 Bin.7z

    • Size

      29.0MB

    • MD5

      0ea984ec2d550a4205fabd911f973a6c

    • SHA1

      71307409e69eb60fe612315e09d4109f91cf23c9

    • SHA256

      6b7c8ac18f492b4536307f4680cd40a9990bafc716d451575ba46c124c3f07b9

    • SHA512

      7bdb043850bbc32d41872b4090426e2193582b139e8be25972b25b9f9fe3a1c54e089a5738a78a804211031a010b8e9a6bd8d983cb534fb34d4a0f87e9484eba

    • SSDEEP

      786432:WqVzpgbD+4aZ/INeMVKyBMtD2Op14tMIADxrHLfygiw:dgbD+XtFMVKyGUuI4ZHLfyK

    Score
    7/10
    agilenetdiscovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks