xworm | 8df0f09e85201e02435652e3e77e5f4574732a977ac16d97a918d0f153ca3911 | Triage

Submit
Reports

Overview

overview

Static

static

XClient.exe

windows10-2004-x64

Sharing

General

Target

XClient.exe
Size

58KB
Sample

240609-vytn2sde67
MD5

5f592bf19b6a2d932d5f41d4c814ad72
SHA1

eac47fb107cb69f63a5ad403c8cf88886307095c
SHA256

8df0f09e85201e02435652e3e77e5f4574732a977ac16d97a918d0f153ca3911
SHA512

6c66943cc3560ecc02446d7bad0819406c1f4f5b9f703f892c9b5f48a06ab7674dadd99711ba6328af82e220a841d9fbceb9ab6244f216dbb6af989b9aa11212
SSDEEP

1536:4/CaSt6xPMaxeflTdSkb376y3VcWxGDyFOVW1p:4qV6xPMCqxSkb3WylT8DyFOVWv

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

XClient.exe

Resource

win10v2004-20240508-en

xworm rat trojan

windows10-2004-x64

3 signatures

1200 seconds

Malware Config

Extracted

Family

xworm

C2

reports-audit.gl.at.ply.gg:17158

Attributes

install_file
USB.exe

Targets

- Target
  
  XClient.exe
- Size
  
  58KB
- MD5
  
  5f592bf19b6a2d932d5f41d4c814ad72
- SHA1
  
  eac47fb107cb69f63a5ad403c8cf88886307095c
- SHA256
  
  8df0f09e85201e02435652e3e77e5f4574732a977ac16d97a918d0f153ca3911
- SHA512
  
  6c66943cc3560ecc02446d7bad0819406c1f4f5b9f703f892c9b5f48a06ab7674dadd99711ba6328af82e220a841d9fbceb9ab6244f216dbb6af989b9aa11212
- SSDEEP
  
  1536:4/CaSt6xPMaxeflTdSkb376y3VcWxGDyFOVW1p:4qV6xPMCqxSkb3WylT8DyFOVWv
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy