e4b004dd8c3648aee2d1efe073cdf5a79c89fffab06395e9c6b57fde30fcf024

Submit
Reports

Overview

overview

Static

static

XWorm V5.2...ox.dll

windows11-21h2-x64

XWorm V5.2...er.bat

windows11-21h2-x64

XWorm V5.2...re.dll

windows11-21h2-x64

XWorm V5.2...ms.dll

windows11-21h2-x64

XWorm V5.2...I2.dll

windows11-21h2-x64

XWorm V5.2...or.dll

windows11-21h2-x64

XWorm V5.2...db.dll

windows11-21h2-x64

XWorm V5.2...db.dll

windows11-21h2-x64

XWorm V5.2...ks.dll

windows11-21h2-x64

XWorm V5.2...il.dll

windows11-21h2-x64

XWorm V5.2...ts.dll

windows11-21h2-x64

XWorm V5.2...re.dll

windows11-21h2-x64

XWorm V5.2...rs.dll

windows11-21h2-x64

XWorm V5.2...ed.dll

windows11-21h2-x64

XWorm V5.2...ls.dll

windows11-21h2-x64

XWorm V5.2...io.dll

windows11-21h2-x64

XWorm V5.2...on.dll

windows11-21h2-x64

XWorm V5.2...ws.dll

windows11-21h2-x64

XWorm V5.2...ne.dll

windows11-21h2-x64

XWorm V5.2...at.dll

windows11-21h2-x64

XWorm V5.2...rd.dll

windows11-21h2-x64

XWorm V5.2...ss.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...DP.dll

windows11-21h2-x64

XWorm V5.2...NC.dll

windows11-21h2-x64

XWorm V5.2...ry.dll

windows11-21h2-x64

XWorm V5.2...ps.dll

windows11-21h2-x64

XWorm V5.2...ns.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...ps.dll

windows11-21h2-x64

Resubmissions

10-07-2024 16:35

240710-t3mwma1amb 10

Analysis

max time kernel
145s
max time network
150s
platform
windows11-21h2_x64
resource
win11-20240709-en
resource tags

arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
submitted
10-07-2024 16:35

Sharing

Copy URL

Twitter E-mail

Static task

static1

9 signatures

Behavioral task

behavioral1

Sample

XWorm V5.2 password 1234/XWorm V5.2/FastColoredTextBox.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

XWorm V5.2 password 1234/XWorm V5.2/Fixer.bat

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

XWorm V5.2 password 1234/XWorm V5.2/GMap.NET.Core.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

XWorm V5.2 password 1234/XWorm V5.2/GMap.NET.WindowsForms.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

XWorm V5.2 password 1234/XWorm V5.2/Guna.UI2.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

XWorm V5.2 password 1234/XWorm V5.2/IconExtractor.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Mdb.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Pdb.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Rocks.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Backports.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Core.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.ILHelpers.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Iced.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Utils.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

XWorm V5.2 password 1234/XWorm V5.2/NAudio.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

XWorm V5.2 password 1234/XWorm V5.2/Newtonsoft.Json.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/ActiveWindows.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/All-In-One.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Chat.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Clipboard.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Cmstp-Bypass.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/FileManager.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/FileSeacher.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HBrowser.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HRDP.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HVNC.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HVNCMemory.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HiddenApps.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Informations.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Keylogger.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Maps.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

XWorm V5.2 password 1234/XWorm V5.2/Plugins/All-In-One.dll
Size

4.8MB
MD5

f24552f5f604c80ba4cf7afd2143df05
SHA1

98883b7bf9b996c788bb501336e388177b9b19c2
SHA256

e050a91599f3e6a89dc84a4825fdea6c4d66e970472aabf48ff586d79b67898c
SHA512

1edb1f6cc4bdb3b69204fa724b2f8a5205b3251f475ae7cf8cb015220a26e9a976c1baa3c938e8fb9df1470795ff579e21b339b58c79f96af96cfdd17eba6c15
SSDEEP

98304:Vl19F9QORkChiDC9OtH7c2iwGxIvPBOw0JefVfQ2a5cFd4KssODtd:F9FPRkC8C9OH7c2ilInz0kfVo26Wsd

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\XWorm V5.2 password 1234\XWorm V5.2\Plugins\All-In-One.dll",#1
1⤵
PID:3964

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads