Overview

overview

10

Static

static

10

2892-18-0x...ry.exe

windows7-x64

2892-18-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2892-18-0x0000000000400000-0x0000000000410000-memory.dmp

  • Size

    64KB

  • Sample

    250307-s2x5jasqz3

  • MD5

    5d1e31332d348ab8d1443fe4078d147d

  • SHA1

    11d08f49ac40b4215aa15b7788a2231d95134116

  • SHA256

    ef340567707576de9e24e399c75fc13e720ecc3164652762458374dbf9e76a32

  • SHA512

    8b0c14ec16ca271d97d87e344009805f4a0ec36b8380af7ffeaf73786803f97d70230c968cbda18f9e5e6a59ad52e744bcec090da8feaf686f2ad4466aef7f9f

  • SSDEEP

    768:+/TWGACKwel4WAPla3qnRFq9fv6sOMhbu1m:+/dl64WI0qRFq9fv6sOMp

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

3.1

C2

ezizanneyaw.duckdns.org:4266

Mutex

FiTlvrJ9jlda8Vht

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

aes.plain

Targets

    • Target

      2892-18-0x0000000000400000-0x0000000000410000-memory.dmp

    • Size

      64KB

    • MD5

      5d1e31332d348ab8d1443fe4078d147d

    • SHA1

      11d08f49ac40b4215aa15b7788a2231d95134116

    • SHA256

      ef340567707576de9e24e399c75fc13e720ecc3164652762458374dbf9e76a32

    • SHA512

      8b0c14ec16ca271d97d87e344009805f4a0ec36b8380af7ffeaf73786803f97d70230c968cbda18f9e5e6a59ad52e744bcec090da8feaf686f2ad4466aef7f9f

    • SSDEEP

      768:+/TWGACKwel4WAPla3qnRFq9fv6sOMhbu1m:+/dl64WI0qRFq9fv6sOMp

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks