xworm | b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357 | Triage

Submit
Reports

Overview

overview

Static

static

b8abd3a873...57.exe

windows7-x64

b8abd3a873...57.exe

windows10-2004-x64

Sharing

General

Target

b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357
Size

325KB
Sample

241101-ynnxlavbmf
MD5

d1552f8c6ea1a4e0f1c7d77190f70468
SHA1

b0e34de1d0fb1c1facdb84c528c72753efbade51
SHA256

b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357
SHA512

ee3a3b13c95dfec14904aaabc8afa12aeccb3dd66e5d2726c36308c471f20f46aa96e88fe3a69099025d016347271a4b53ab6798701f40cc357e96862fd31474
SSDEEP

6144:DibyzpibBI+GIIIIIIIhIIIIIIIIIIIIIIIU:DibwS

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357.exe

Resource

win7-20240903-en

xworm rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357.exe

Resource

win10v2004-20241007-en

xworm rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

xworm

C2

157.66.26.208:8848

Attributes

install_file
USB.exe

Targets

- Target
  
  b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357
- Size
  
  325KB
- MD5
  
  d1552f8c6ea1a4e0f1c7d77190f70468
- SHA1
  
  b0e34de1d0fb1c1facdb84c528c72753efbade51
- SHA256
  
  b8abd3a87339e1aea8fa843c4f9c2bfb55a870d28650222ca06b482795022357
- SHA512
  
  ee3a3b13c95dfec14904aaabc8afa12aeccb3dd66e5d2726c36308c471f20f46aa96e88fe3a69099025d016347271a4b53ab6798701f40cc357e96862fd31474
- SSDEEP
  
  6144:DibyzpibBI+GIIIIIIIhIIIIIIIIIIIIIIIU:DibwS
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy