e4b004dd8c3648aee2d1efe073cdf5a79c89fffab06395e9c6b57fde30fcf024

Submit
Reports

Overview

overview

Static

static

XWorm V5.2...ox.dll

windows11-21h2-x64

XWorm V5.2...er.bat

windows11-21h2-x64

XWorm V5.2...re.dll

windows11-21h2-x64

XWorm V5.2...ms.dll

windows11-21h2-x64

XWorm V5.2...I2.dll

windows11-21h2-x64

XWorm V5.2...or.dll

windows11-21h2-x64

XWorm V5.2...db.dll

windows11-21h2-x64

XWorm V5.2...db.dll

windows11-21h2-x64

XWorm V5.2...ks.dll

windows11-21h2-x64

XWorm V5.2...il.dll

windows11-21h2-x64

XWorm V5.2...ts.dll

windows11-21h2-x64

XWorm V5.2...re.dll

windows11-21h2-x64

XWorm V5.2...rs.dll

windows11-21h2-x64

XWorm V5.2...ed.dll

windows11-21h2-x64

XWorm V5.2...ls.dll

windows11-21h2-x64

XWorm V5.2...io.dll

windows11-21h2-x64

XWorm V5.2...on.dll

windows11-21h2-x64

XWorm V5.2...ws.dll

windows11-21h2-x64

XWorm V5.2...ne.dll

windows11-21h2-x64

XWorm V5.2...at.dll

windows11-21h2-x64

XWorm V5.2...rd.dll

windows11-21h2-x64

XWorm V5.2...ss.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...DP.dll

windows11-21h2-x64

XWorm V5.2...NC.dll

windows11-21h2-x64

XWorm V5.2...ry.dll

windows11-21h2-x64

XWorm V5.2...ps.dll

windows11-21h2-x64

XWorm V5.2...ns.dll

windows11-21h2-x64

XWorm V5.2...er.dll

windows11-21h2-x64

XWorm V5.2...ps.dll

windows11-21h2-x64

Resubmissions

10-07-2024 16:35

240710-t3mwma1amb 10

Analysis

max time kernel
92s
max time network
99s
platform
windows11-21h2_x64
resource
win11-20240709-en
resource tags

arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
submitted
10-07-2024 16:35

Sharing

Copy URL

Twitter E-mail

Static task

static1

9 signatures

Behavioral task

behavioral1

Sample

XWorm V5.2 password 1234/XWorm V5.2/FastColoredTextBox.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

XWorm V5.2 password 1234/XWorm V5.2/Fixer.bat

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

XWorm V5.2 password 1234/XWorm V5.2/GMap.NET.Core.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

XWorm V5.2 password 1234/XWorm V5.2/GMap.NET.WindowsForms.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

XWorm V5.2 password 1234/XWorm V5.2/Guna.UI2.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

XWorm V5.2 password 1234/XWorm V5.2/IconExtractor.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Mdb.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Pdb.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.Rocks.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

XWorm V5.2 password 1234/XWorm V5.2/Mono.Cecil.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Backports.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Core.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.ILHelpers.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Iced.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

XWorm V5.2 password 1234/XWorm V5.2/MonoMod.Utils.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

XWorm V5.2 password 1234/XWorm V5.2/NAudio.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

XWorm V5.2 password 1234/XWorm V5.2/Newtonsoft.Json.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/ActiveWindows.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/All-In-One.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Chat.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Clipboard.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Cmstp-Bypass.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/FileManager.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/FileSeacher.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HBrowser.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HRDP.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HVNC.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HVNCMemory.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/HiddenApps.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Informations.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Keylogger.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

XWorm V5.2 password 1234/XWorm V5.2/Plugins/Maps.dll

Resource

win11-20240709-en

windows11-21h2-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

XWorm V5.2 password 1234/XWorm V5.2/Plugins/FileSeacher.dll
Size

478KB
MD5

fe625a7c51e699336f9acc3108437134
SHA1

50099ae8c3679930400261c80ade073157fe4f80
SHA256

68e4e6f42ffdf5ed18f1849e30f83b1baed1cfa57c68f57178bfa875e247c2b7
SHA512

26b9bf3c0b31fe029201c884f7d220b0bfe589d33dd6aa0dfd665c38af07c2352e89859198e0e9b18339c0e6c8f1e9c44358b222106531659aeb0d6f6c6c0c44
SSDEEP

6144:I88L5lWTUVRTw/l97teGtSV41QJDsTDDh0Yhe6dwxLV/tuhgpn5fWRBI+WR:hzTUVRTw1lS4Ys50ie6Cf4gpys

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\XWorm V5.2 password 1234\XWorm V5.2\Plugins\FileSeacher.dll",#1
1⤵
PID:4176

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads