504ff53b3ef102b3eda983a9c27ed5439b7b8e962ee1a5a236b7a8666e240898 | Triage

Submit
Reports

Overview

overview

Static

static

XWorm-main...ox.dll

windows10-2004-x64

1

XWorm-main...er.bat

windows10-2004-x64

1

XWorm-main...I2.dll

windows10-2004-x64

1

XWorm-main...io.dll

windows10-2004-x64

1

XWorm-main...ip.dll

windows10-2004-x64

1

XWorm-main...ws.dll

windows10-2004-x64

1

XWorm-main...AC.dll

windows10-2004-x64

1

XWorm-main...OD.dll

windows10-2004-x64

1

XWorm-main...en.dll

windows10-2004-x64

1

XWorm-main...ks.dll

windows10-2004-x64

1

XWorm-main...ot.dll

windows10-2004-x64

1

XWorm-main...at.dll

windows10-2004-x64

1

XWorm-main...um.dll

windows10-2004-x64

1

XWorm-main...rd.dll

windows10-2004-x64

1

XWorm-main...er.dll

windows10-2004-x64

1

XWorm-main...ss.dll

windows10-2004-x64

1

XWorm-main...ts.dll

windows10-2004-x64

1

XWorm-main...ts.dll

windows10-2004-x64

1

XWorm-main...WD.dll

windows10-2004-x64

1

XWorm-main...ns.dll

windows10-2004-x64

1

XWorm-main...WD.dll

windows10-2004-x64

1

XWorm-main...il.dll

windows10-2004-x64

1

XWorm-main...er.dll

windows10-2004-x64

1

XWorm-main...er.dll

windows10-2004-x64

1

XWorm-main...la.dll

windows10-2004-x64

1

XWorm-main...DP.dll

windows10-2004-x64

1

XWorm-main...er.exe

windows10-2004-x64

1

XWorm-main...er.exe

windows10-2004-x64

1

XWorm-main...er.exe

windows10-2004-x64

1

XWorm-main...NC.exe

windows10-2004-x64

7

XWorm-main...rm.exe

windows10-2004-x64

1

XWorm-main...ib.dll

windows10-2004-x64

1

Analysis

max time kernel
133s
max time network
103s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
22-05-2024 02:32

Sharing

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

XWorm-main/XWorm RAT V2.1/FastColoredTextBox.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

XWorm-main/XWorm RAT V2.1/Fixer.bat

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

XWorm-main/XWorm RAT V2.1/Guna.UI2.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

XWorm-main/XWorm RAT V2.1/NAudio.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

XWorm-main/XWorm RAT V2.1/Plugins/7zip.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

XWorm-main/XWorm RAT V2.1/Plugins/ACTWindows.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

XWorm-main/XWorm RAT V2.1/Plugins/AskUAC.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

XWorm-main/XWorm RAT V2.1/Plugins/BSOD.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

XWorm-main/XWorm RAT V2.1/Plugins/BlankScreen.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Bookmarks.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Bot.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Chat.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Chromium.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Clipboard.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Clipper.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Cmstp-Bypass.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Computerdefaults.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

XWorm-main/XWorm RAT V2.1/Plugins/DeletePoints.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

XWorm-main/XWorm RAT V2.1/Plugins/DeleteWD.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

XWorm-main/XWorm RAT V2.1/Plugins/DicordTokens.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

XWorm-main/XWorm RAT V2.1/Plugins/DisableWD.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Email.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

XWorm-main/XWorm RAT V2.1/Plugins/Encoder.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

XWorm-main/XWorm RAT V2.1/Plugins/FileSeacher.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

XWorm-main/XWorm RAT V2.1/Plugins/FileZilla.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

XWorm-main/XWorm RAT V2.1/Plugins/HRDP.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

XWorm-main/XWorm RAT V2.1/Tools/HVNC-Server.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

XWorm-main/XWorm RAT V2.1/Tools/ResHacker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

XWorm-main/XWorm RAT V2.1/Tools/vncviewer.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

XWorm-main/XWorm RAT V2.1/XHVNC.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

XWorm-main/XWorm RAT V2.1/XWorm.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

XWorm-main/XWorm RAT V2.1/dnlib.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

XWorm-main/XWorm RAT V2.1/Plugins/Encoder.dll
Size

11KB
MD5

273d8c94b9b7cd9526d44289115e72c3
SHA1

b8e1911a0ca4f1439838f89e136e27dafe41c97e
SHA256

dc51fb8a0140ba8cfcb19dab7f29cfbcd0579a08c3c1d68b915d2b59a8a93a71
SHA512

d3f3bd8e46baa152bdfdb5633136134d94920616fb00463a2437e162a50e7ea9d3f9f1c3e15fa1c814d10ae2d71275d8615ae1b4d268e15f7ecd4e89a3fe507a
SSDEEP

192:Jj9Y4KofL4k6PplZEdld5efBGOzutx1b+T+IW1PnQ7SiSpjzH/L2wRc0:Jj9woj4RUrPefMCuVqTAnQSpjz6wv

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\XWorm-main\XWorm RAT V2.1\Plugins\Encoder.dll",#1
1⤵
PID:3000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy