c2f1a7dd2775fa49204b83ab9fafdeb4d1d9b6706072f9a45ce4ae32e7dc998d

Sharing

Copy URL

Twitter E-mail

General

Target

XWorm-RAT-V2.1-main.zip
Size

34.0MB
Sample

240522-dcymfaab7z
MD5

2020d7466924f270d1cf86131d24fab9
SHA1

15945ac17cfc14fa39373160e009701245cb46c0
SHA256

c2f1a7dd2775fa49204b83ab9fafdeb4d1d9b6706072f9a45ce4ae32e7dc998d
SHA512

373befa09491965231138c8f081a4397e0f75fe439b2762d37a88683c67c8db88feee95c46462721c510f418e1c21e791183b0506072bc8e16551caa48f9468b
SSDEEP

786432:2iIKmjbTlNWspkclWQ2vxDQXzTnHB351fVjYX/BbK+PIZ2:Vs1os5AfRWh351f+b9r

Score

10^/10

agilenet

Malware Config

Targets

- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Command Reciever.exe
- Size
  
  6.5MB
- MD5
  
  a21db5b6e09c3ec82f048fd7f1c4bb3a
- SHA1
  
  e7ffb13176d60b79d0b3f60eaea641827f30df64
- SHA256
  
  67d9b4b35c02a19ab364ad19e1972645eb98e24dcd6f1715d2a26229deb2ccf5
- SHA512
  
  7caab4f21c33ef90c1104aa7256504ee40ff0a36525b15eb3d48940862346ccf90a16eef87c06d79b0ffd920beb103ed380eae45df8c9286768890b15ed1067c
- SSDEEP
  
  98304:KAc94bqa9niwFYWLqDuTTTTTTdfPPpWLq+Guf2W2b6F72q0:KAcC9iwFYWuDCPPpWu+GduZ2L
Score

3^/10
behavioral1
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/FastColoredTextBox.dll
- Size
  
  333KB
- MD5
  
  b746707265772b362c0ba18d8d630061
- SHA1
  
  4b185e5f68c00bef441adb737d0955646d4e569a
- SHA256
  
  3701b19ccdac79b880b197756a972027e2ac609ebed36753bd989367ea4ef519
- SHA512
  
  fd67f6c55940509e8060da53693cb5fbac574eb1e79d5bd8f9bbd43edbd05f68d5f73994798a0eed676d3e583e1c6cde608b54c03604b3818520fa18ad19aec8
- SSDEEP
  
  6144:4FErOIif3RzSHh+20lXs1TzCeBcQeDbNlz7:eEeR52bmeh0n
Score

1^/10
behavioral2
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Fixer.bat
- Size
  
  122B
- MD5
  
  2dabc46ce85aaff29f22cd74ec074f86
- SHA1
  
  208ae3e48d67b94cc8be7bbfd9341d373fa8a730
- SHA256
  
  a11703fd47d16020fa099a95bb4e46247d32cf8821dc1826e77a971cdd3c4c55
- SHA512
  
  6a50b525bc5d8eb008b1b0d704f9942f72f1413e65751e3de83d2e16ef3cf02ef171b9da3fff0d2d92a81daac7f61b379fcf7a393f46e914435f6261965a53b3
Score

1^/10
behavioral3
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  d65fd6dbbd3c9ac74139aeaedc4a5816
- SHA1
  
  407ae10ccc8e19798bf75cb90b2150cb63a9db66
- SHA256
  
  84199a22c8669a39800272c3da0d969ec4e8d77d67b9d324ca049953a5042c71
- SHA512
  
  b8a99e88d49a6f9ff89339fa5acc9df8b59665d2ec22ccb4741e501bba6b280b00336906a637d8f071f86a4dcd68ca4ac86683e651466f084cb96d0e3152eddf
- SSDEEP
  
  49152:ClU6fD73waJnBA5lV8jldVmIgA5iKOvhn:ClU6vznglEldVmIJi/vt
Score

1^/10
behavioral4
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/NAudio.dll
- Size
  
  502KB
- MD5
  
  3b87d1363a45ce9368e9baec32c69466
- SHA1
  
  70a9f4df01d17060ec17df9528fca7026cc42935
- SHA256
  
  81b3f1dc3f1eac9762b8a292751a44b64b87d0d4c3982debfdd2621012186451
- SHA512
  
  1f07d3b041763b4bc31f6bd7b181deb8d34ff66ec666193932ffc460371adbcd4451483a99009b9b0b71f3864ed5c15c6c3b3777fabeb76f9918c726c35eb7d7
- SSDEEP
  
  6144:96/i10SZtfzWctj98vZcE0wmLlaIZs5eku2sX2hrjAzvgmXa6W9FwsT9idwktQZG:9yrSKMJR9aGs55T1X9Fwspi2tGpmS
Score

1^/10
behavioral5
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/7zip.dll
- Size
  
  1.3MB
- MD5
  
  de03ce2ff4d7f7625352a8c4b44f3196
- SHA1
  
  357d3d42fccea225277810d28a43c17ab5dbf3a5
- SHA256
  
  201b8405af13e843b30f4cb96961286b11114729a75e9388e2bd717785f95261
- SHA512
  
  675d230cd3c28d1b66aa24dc5966cebee426dd85d75775c29e4e61373019456f3d66dab6a2706132d32cd37aed366f00ebe9ce6ae80f31963e02bbf67e0a530e
- SSDEEP
  
  24576:u0/LsiV9P+XbiDmHzsvTK6BN2TBQLge+ErnuIAr24sNhHXZ:ucLsk9Pk6gAK6BN2NQUe+ErnuVqjNhHX
Score

1^/10
behavioral6
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/ACTWindows.dll
- Size
  
  10KB
- MD5
  
  b421c1a1915efd31250603caf98a6efa
- SHA1
  
  9c54fffa90dc39ed9a63dd405644ca3679c543e8
- SHA256
  
  1c921e95d1f35e9aeba1d544362268bd1ac77a1006c215abeb6da9e041b3dee4
- SHA512
  
  c6c99379e87fa4108307ce61eaaf1143d4d04c09ca3e8e13cd89b3e3ae3c01e3e641cdf6f9f414001705acb54b3a4bd615bf313764b62fe0f60286b6f8ab27e0
- SSDEEP
  
  192:xEioKRFQer7v67Y85ZIwI71tHThIW1PnyWVSBQMLuTF:+ibRFv8DIbtHTrnyWVSQTF
Score

1^/10
behavioral7
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/AskUAC.dll
- Size
  
  9KB
- MD5
  
  4a76da7ba432413e023cc2daef5f73b4
- SHA1
  
  c4261cde5160753afba76604e6b71cfc1d95b58d
- SHA256
  
  742625b8c8e1ad522dde95931102926aa7f806657879705b4fccaf36614d8d77
- SHA512
  
  b43d50ee1385ba9b0e3d712f8e64b7ba4d634fdd9e8927cc330c71d34aae97f66291172cc713176206e0b2bbfeadff34ca5aa0605aa71a00db3434ebaa555bf3
- SSDEEP
  
  192:mH563sg1GON8bIsgyBTkIW1Pn/KiVawMLOQ:mpFQ8bWyBTun/KwaAQ
Score

1^/10
behavioral8
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/BSOD.dll
- Size
  
  9KB
- MD5
  
  e82a0b53c1a19276e006db45bea7de6a
- SHA1
  
  3e5ff9be31351de44b4fc633e3d9d19aaecee967
- SHA256
  
  3980b827732c01092e7b11b8c1dfecbed4bff66a5e977bcb1c8d9ab14b4ef5b7
- SHA512
  
  434c4d81726f4dc1492168bfe3e5761838b2ba457ba4f4e7fe4bd9e9c42287842860688864e1f07a5188fc1fa671d5f76bf851d31072844f6e3342f3a64bc798
- SSDEEP
  
  192:kJeGXJtrAeCwGv1GOq11ZTXIW1vnbcgpyAFTLOe:k5ZtrA3C9ZTlnb7pyAUe
Score

1^/10
behavioral9
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/BlankScreen.dll
- Size
  
  9KB
- MD5
  
  b9d4b5254e5647fdf8236e890d29810a
- SHA1
  
  93220a47529f7b0a9181c72481f81f366c211ac7
- SHA256
  
  033e790e1cb99781d3d9710553e74de6a3c5e9765eca6c717b23c515708e86a7
- SHA512
  
  33be9e0e4bfa8851b1fa389da59b2ed75d8852e8a6cf2b7a410d910578167ce50c917bab2ac264daafa65b0d1f3727a358bea1a01faa71790fab037131c55548
- SSDEEP
  
  192:ezfcER2CRuTzi9fTGOlF1LATWEIW1PnaiwpM4QLOBk:ocG2cS+UTWOnaiwpMCG
Score

1^/10
behavioral10
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Bookmarks.dll
- Size
  
  28KB
- MD5
  
  37de3820cfee60eeacbc1700fcc966fb
- SHA1
  
  5d85967609218b3df136aac0096383075cd5bddf
- SHA256
  
  83e61cafed75d7d799f4cc7b1e91c3b0c8785ce97a9dd8528a34ef2f8003ec9a
- SHA512
  
  ac4a0b26a7c9d939eae399fb1a0ed575d64ef769f0cd6026e6f12f4ec9d472cb105765320e8e3a5bb06c142ce2143be697cda4234e74cc5127cafe73755cc70f
- SSDEEP
  
  768:S6s1GRoX8l3E0edaVGMKFK2D3Vbuw1z9ruOc2GkYCrB9gB:U8kMR2D3Vb9ruOc2GktB9gB
Score

1^/10
behavioral11
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Bot.dll
- Size
  
  10KB
- MD5
  
  2cf7d3e1ec1b9f2d906b191df52802a1
- SHA1
  
  74168f86a77444e394fba5b5605153e099917cd3
- SHA256
  
  ce5bce27f2a2b1d1e2fd52dbcf94b4d1f3ed133f491fabf8b80f1f6978c5552e
- SHA512
  
  327bcce5b2e921615abde17cdfe4572e54f3e4c79f0f08bc314c8e891460a90c4d407db3c1c6b27d02555c0a81e02afa39c98d071121ab71449507b1b87113d6
- SSDEEP
  
  192:psFxWDh8iTEeo1EIpHRfoH1GO+0A5WgycT/IW1U9y/L2fqvVWMLW+:CqhDEdThUwn5hycTi9y/L2fqvVG+
Score

1^/10
behavioral12
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Chat.dll
- Size
  
  18KB
- MD5
  
  181599ac647dcaac9bee9be73e40501d
- SHA1
  
  fced4627ecc0f8172af1a34e54d226311b54634b
- SHA256
  
  29bf5ad7420bf165b555970a15b94b93f9dd288df87a66327022ff9602bccd8e
- SHA512
  
  1c835a6749caa39ad9188cda2c6629f2b78adb8388b4010e09e9ad5b326c137c237448006339b6c8ba9d6310bcde06bfb0a3e1ae72f14acca485f9a5bf363e40
- SSDEEP
  
  384:qL6SP+OzVEbK6LcuTKQt0InoIInfUUWRfE:M6SP+OBOKmcmqIInfUXm
Score

1^/10
behavioral13
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Chromium.dll
- Size
  
  32KB
- MD5
  
  34f049112ea43d6cee9ea124282854f5
- SHA1
  
  f0ff219107853d5d82f74603f1077d4f4c1c8317
- SHA256
  
  ec15606129c31d519b6752d3567b1b2603efe877938443707080c05abaa161e5
- SHA512
  
  7b2947529d1f558ba4c54414b58b5f81cfb6fea8181879ec8cdcc2df9c3bff9d1f96a5d79a4191e02dcfb2be132fff39c6dd62283aabe72c3f7254e550e1175a
- SSDEEP
  
  768:xGW9spcK+tRAj0xtaqPXvYXP0vzAqaVh6wB3Zs/Yx/3:xGW9jZ2j0xtaqPvYXP4AqQh6Y1
Score

1^/10
behavioral14
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Clipboard.dll
- Size
  
  9KB
- MD5
  
  9681d56abcdd302dc435e865d4375df2
- SHA1
  
  77fa370dbebdd13b18dc6f41f86d2dd64379ee75
- SHA256
  
  75b37e44ec0d76cc4862de45f69f362499e7707b3fc0ed03c4b68b04a505ed43
- SHA512
  
  1e19afed9b96ae122faa34fdd04a79c9e65270f944992b33aa8a2f894847f01c7fe533c338574367ca8ea5ac0f57c291839e17fa97ecd8d972800b637c5efb54
- SSDEEP
  
  192:zPNE2c1og86hRlfOHdv1TLxIW1Pn/+97RML22nU:zFEl1og86RktTLbn/+9NeU
Score

1^/10
behavioral15
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Clipper.dll
- Size
  
  10KB
- MD5
  
  a91c4c459bfc493552b37cd6ad79eb4e
- SHA1
  
  0147792b9c5c21b9a1e68f098803ad7d6876c6fa
- SHA256
  
  3087f4c71222172069ffc441a2aca41785562a92260e6fca813a576a8e104fdc
- SHA512
  
  6932b326312501c82f0be5ed8fc22d659fbb008ba66087186e814a23b8d31b21f058a4d3226cc6569b713e9e4dc3e8cb535ec1edb395cb5c4548e573252a588e
- SSDEEP
  
  192:nfxgo6FiR3r9UdNltsOIO/dQ1GiMIW1Pbe/nPA8/YjNMLOi:nCFar+dN/IEuGiWi/nPA8/8Hi
Score

1^/10
behavioral16
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Cmstp-Bypass.dll
- Size
  
  11KB
- MD5
  
  b6168619969011ef036cced5e6d2bb88
- SHA1
  
  a69ffe4f8f41040ca839772e334d11147965e00e
- SHA256
  
  995e755827bf8c1908e64d40a7851e05706b89e41dee63037e5c4be0b61f113e
- SHA512
  
  d43890212684841982cb180b246c776b4499f5c3b3d285f87b572a369553023899642cb70faeea2dc1d9f2eec99773d395b6573397d20aae18b685d24cffc7f6
- SSDEEP
  
  192:fZCBkF2mSmZbBYBIpN4YeTysxIGOyv4Bb9akegyaTRIW1vr/uTDFs5GATLec7hH0:fYM2mNOBI/UysxZ/QBbUkZyaTjr/6YGY
Score

1^/10
behavioral17
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Computerdefaults.dll
- Size
  
  10KB
- MD5
  
  20d572d7bb194b9b7401aafba0b81f19
- SHA1
  
  adab6e88fd320519ca843630020ea3f4c79071cc
- SHA256
  
  6ca31d50033eb1829f126353a849177f74501a4a489148b5beaaee0e564bfe91
- SHA512
  
  3b1ed2f277e61484fc1592c62d2059c221d43652b9b5171a6037c85dee11105865832e3532f69fb7ad0f58c5460ede6f2746e62b03013793c00a3a0036a6422a
- SSDEEP
  
  192:/y3XzuK0MGO68mgyITjIW1PD/lf5lrljlQ0lIdlUwSxExocTLWlb:/ynzuKcLWyITND/lfeiMo11
Score

1^/10
behavioral18
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/DeletePoints.dll
- Size
  
  9KB
- MD5
  
  bcca9532b7ba99863f929f10087a6d43
- SHA1
  
  04a8c8374adb5ef9b316bdf92eba8deaf5e7f947
- SHA256
  
  8ea85db9c8e12d3a0240a02d6f0cd9b8b115a0fcb1b24b70d03278c828c31879
- SHA512
  
  d59453d83f9c9283c10ecaeadb2e376e86b4ae05f64a91f82b5b4653262db1bb0812ec4a4e1a30c68c8bb6f5ee1a784552936649af0e05cfeab203abd6082f69
- SSDEEP
  
  192:nPyV1Piyl52HzGO8X140TwIW12nH8i7eVMLW7:nPyfvWydXTZnHZ7et7
Score

1^/10
behavioral19
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/DeleteWD.dll
- Size
  
  1.5MB
- MD5
  
  d5051b56f7371238d8e7a5361951a6aa
- SHA1
  
  a0e45ec01df6bc37c26ffd45562009878de948c3
- SHA256
  
  887873a59e10d8000085ad987c802e9fa2d231f31eb2523f4b823f8083f462e0
- SHA512
  
  f5879402cf0999cd3e4f9cf156c26cad7d7e73b7be84d311ffb0abaa065cf822e19c2f3c4a89a24588bd96c59e625201ac19f7d3702cd76089e87a27a7a4a6f6
- SSDEEP
  
  24576:8BW+1C0G0faR5wNRXLbLKavHBNmWC7vOIMmxXTffuu3TG+R+aNAdpCmlY/64IxLJ:8Bx1HQ0VXLpNyzM+XD2uDz+amLC0jHxL
Score

1^/10
behavioral20
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/DicordTokens.dll
- Size
  
  6KB
- MD5
  
  7ad4756cde3dd26bdbe03cc583527a06
- SHA1
  
  557e9a05dd00764c13c1c2ab93d3520f86a93dd1
- SHA256
  
  493ce4fdfceacc0ffdae460dafcc352a3792de437b6a7587c7731a5c900409b8
- SHA512
  
  80d934b4befc75dffd1abe27945152cffd8a7f9be035ef5d534b2d5bee2f630a436a7841fd1c5ecc02876242d520cac5825c9016e6bcb7e12613baa29db1ad1f
- SSDEEP
  
  48:6OIT/BvVV5VydE/tjIaVvNXOu5RKgS8PCtcUl8nNMAcx3numn2sex05x0oT+Hml3:OBpVydE/9Fiwvx6tcUlrA0v0s+mltIJ
Score

1^/10
behavioral21
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/DisableWD.dll
- Size
  
  13KB
- MD5
  
  7af0f08b780ae3a26118f167a2c2f8b0
- SHA1
  
  c473cf621bac31c1af4e59903012fb027dc75105
- SHA256
  
  d384ec908583b271588a27748850e4cadf9d8b55a4afdfa54170738da54fc4ef
- SHA512
  
  231c59aed5967fb42685b1cd867ade5cf6944c145de290eefc969d57f574cccae09451af3e42416b0c9126bac7e07bb57cbab74be269a9e99619411f79704bb3
- SSDEEP
  
  192:iQLEv8T4LLpNkQvmDbeNEDTRQmCkUE2WKU1GO0zb7lgJ1T9IW1Un/3eKtfLie9y1:iojqEdJUEDtw9zbyJ1TMn/3euG4XFU
Score

1^/10
behavioral22
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Email.dll
- Size
  
  4.8MB
- MD5
  
  cbc0e4c9693b2769634ba4400249a4b3
- SHA1
  
  a889e9a53ab94ec507ff1a2a7e6fc3258647f82b
- SHA256
  
  08c0561606c50327e52d20d67e447431beffff4357c011d5df58c7923cea82c0
- SHA512
  
  9f0d39423c3b5076fdfd39f52282d6fb1cb044984a8de936108d114e139a657718209a878ba95d52f021c6bd554cd71a17f408c9c02de70dfa6f07d06ea78a8c
- SSDEEP
  
  98304:K1RA+vAQO328PXuSYibjYKcQo4wTej9r++rf2nydtrQ:kRA+C32/anYj2nOSm
Score

1^/10
behavioral23
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Encoder.dll
- Size
  
  11KB
- MD5
  
  273d8c94b9b7cd9526d44289115e72c3
- SHA1
  
  b8e1911a0ca4f1439838f89e136e27dafe41c97e
- SHA256
  
  dc51fb8a0140ba8cfcb19dab7f29cfbcd0579a08c3c1d68b915d2b59a8a93a71
- SHA512
  
  d3f3bd8e46baa152bdfdb5633136134d94920616fb00463a2437e162a50e7ea9d3f9f1c3e15fa1c814d10ae2d71275d8615ae1b4d268e15f7ecd4e89a3fe507a
- SSDEEP
  
  192:Jj9Y4KofL4k6PplZEdld5efBGOzutx1b+T+IW1PnQ7SiSpjzH/L2wRc0:Jj9woj4RUrPefMCuVqTAnQSpjz6wv
Score

1^/10
behavioral24
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/FileSeacher.dll
- Size
  
  474KB
- MD5
  
  5e500219492ffe9927eb36600e58fc10
- SHA1
  
  75d54f8e39c5c12fdfed92d9872283929a603368
- SHA256
  
  86bf7cfe573f4c36645cc30bcbc5a9aab7b9925f3a1f2cdcfb4b86829b09637a
- SHA512
  
  b593a6ba337f0d21cd8caf7d15fa14731a7dd2108560a2cdc700e2c2c8435d46781c7adf7d27da827d1bd5a0bb584a724d937d0e456dbe420d959cb783631c05
- SSDEEP
  
  6144:8+Zza7lMB+meGtSV41QJDsTDDh0Yhe6dwxLV/tuhg3MwBIl0T:8+Zza7lMB+mlS4Ys50ie6Cf4g3Zw0
Score

1^/10
behavioral25
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/FileZilla.dll
- Size
  
  6KB
- MD5
  
  926db64536c6996e5c377d89caacdde8
- SHA1
  
  f3233095e3a7dfe1ae7cf59a1bb10b3606ded6fb
- SHA256
  
  da994e868ad929e7d90b413737789aedac7b5345ecede1c79be54715cd0c1ce5
- SHA512
  
  424b485add47844fa5fe6afc8cb9aae6f4038e374b1b334fb71fc5df4f47f363896ef88487a3405870e8f8e858651ce004368e867a41e2ffc1c282acfe928e3d
- SSDEEP
  
  96:MUW9xv14nJtKZhYSvvwZDo4i0udeW3AXTA:A9Z1+vKZhzvv0Do46T3AXU
Score

1^/10
behavioral26
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/HRDP.dll
- Size
  
  479KB
- MD5
  
  e3ce88d6f031a66fa267f53ce60d14fb
- SHA1
  
  52b937fcb2b78e677252b146c7c50e4230fa9153
- SHA256
  
  6549c2a9be50aed342cd29b4a48d2fd9c15bffd16eec7fb94a49e10472bf03a3
- SHA512
  
  f20b978ca244d91d818b11e934334183b77eaf46ba6ce48fe3fd3a4e6ba189f466fc125c41bad556ac2c0d8e647f406cb403577198e8556d874164b15c352631
- SSDEEP
  
  12288:3KBbEVy2humYgLmm3HiYRbli1FaWFXlzeAWx:aB2yqjmm3Hi8c7aI0
Score

1^/10
behavioral27
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/HVNC.dll
- Size
  
  53KB
- MD5
  
  88fbfa8f8c8defacf551be380d4dc432
- SHA1
  
  93056bf5046a009441e5d9bffeb902a7b81808f0
- SHA256
  
  23ed5325043d0b9e7a9115792b12817cec836ba09e5af2aab3408606da729681
- SHA512
  
  a78434203e76147364d4c8868992ef48e28d3cb43b9df2da813c9b426798cf7d6defcbf3e2be1535d0953bac7e9033e58ae53bef98638a2e9c88529f8e7089c9
- SSDEEP
  
  1536:tZ5OcCnWMYDUTFm8Lq8rYYtGvAcRsAWYu:35Oc0FDu80YQv3Kbj
Score

1^/10
behavioral28
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Info.dll
- Size
  
  17KB
- MD5
  
  d8c7f6dd28ddaa759bbabf4236117aba
- SHA1
  
  891845f7c701bff4b09f3af03713e5d37a1dfcfe
- SHA256
  
  d31f883428d57974873a5adcf166e320037a13021bc5eae31cf3e727431dec65
- SHA512
  
  cac59d8a5d84bd9ee6df7cc5af955b6e5cbe4bf3f596fa7881084d1eee3e2e6fad36f1cf75a0d3a5e733326dcada835ae7286b936763ee8471f3a1869560627f
- SSDEEP
  
  384:+coL2FWM9BbzdtlFcl/R4INNWQO4D/ibor:+co87zLlQNN1/icr
Score

1^/10
behavioral29
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Install.dll
- Size
  
  10KB
- MD5
  
  3f6d26632ad91a267f2439dd8fb947c1
- SHA1
  
  0979dd660be359006c1dd2989d356a6e3332f082
- SHA256
  
  e50ec87823b23c2721a0f3a04b64454a58aea714d756e8a148766ba3502e6491
- SHA512
  
  fd337e33a8b2e807c29333f9a95dffae7c6b662727ab629b7713f0777ffda1abda9310ea714d53dc05139aeb4ba9eff1251a31f6592c4ba8e88172bb1d412d75
- SSDEEP
  
  192:cm05RWWAldVV+GOabZv1hbBIW1UM/usfLaxDTLuDw:cmuRW5lTV77bPhbYM/JaxCDw
Score

1^/10
behavioral30
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/Keylogger.dll
- Size
  
  13KB
- MD5
  
  cfcbdfbaf8c6d4ab1c48440dbc1bc827
- SHA1
  
  18beafd6cc3515004cc7ab9fb9f7f25442cb7040
- SHA256
  
  815dfb13e0c4d5040ffb1dde7350cc77f227b2945b01c61bf54f85eefdd182cf
- SHA512
  
  701cdf04aa9d6bfe26ecaa2b45cfe05e7760da8e75a615782111e6b116f887b2112e23936cf4b6ca194a99dbbdac16e4a0ce9f0563c62e63e2ae3c276baa1fb7
- SSDEEP
  
  192:KAP2P9zc6dDt/Qv0LOTXIzuVuuGOX2+u1XeToIW1dD6rhuCVPRUmjQnxMLu40:KAP0Nt4v0q8tHOT8OrhhRUmjyT40
Score

1^/10
behavioral31
- Target
  
  XWorm-RAT-V2.1-main/XWorm RAT V2.1/Plugins/KillWindows.dll
- Size
  
  9KB
- MD5
  
  bc162213bc135674d1265bc52c4bf22d
- SHA1
  
  f9dd26a2d29d6525394426e2be64002d24d50626
- SHA256
  
  3b55e859b981ab37efb1c016407190922d836161bc1318b6e25656c3d300c86a
- SHA512
  
  74aa5bbfd300f0377d4989d33f6645087b1d3e273413f11a2d46646ba84098a1c6e059b84e0e4f7372c111dac997275698aa4e4a8d8d7ce56ce842d99e587294
- SSDEEP
  
  192:Vj7isBYkmlO2GOvg1vTkIW1Pn/BMUpFc+IMLOw:VjDzPvTun/KUpFc3w
Score

1^/10
behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Query Registry

T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32