xworm | 5d9b26f74928e8248fee1c46c92d42f58f76d0086939d26662e2ee1c11138362 | Triage

Submit
Reports

Overview

overview

Static

static

virus.exe

windows11-21h2-x64

Sharing

General

Target

virus.exe
Size

56KB
Sample

241111-zhpglsvnat
MD5

bc44e44d0789b1241d24672a6b4583b8
SHA1

8d12b989d42b24558df9ff0089562ef8e8b648b8
SHA256

5d9b26f74928e8248fee1c46c92d42f58f76d0086939d26662e2ee1c11138362
SHA512

6ec5873a4f1bf31ba358046e2ac6da877fa38ea7f7bfe0ff8046ef14b44dd8f475045a3e79280c0d2f4b5e406bc43f0fe658c1124cfaee40847772f23dbc84d1
SSDEEP

1536:y7vwJaCuS/kQ0vGkb+4qF/DF9HtG4OLEkJ6:y8Ak/yekb+nhpnOLE9

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

virus.exe

Resource

win11-20241007-en

xworm rat trojan

windows11-21h2-x64

4 signatures

1800 seconds

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:45767

Attributes

install_file
USB.exe

Targets

- Target
  
  virus.exe
- Size
  
  56KB
- MD5
  
  bc44e44d0789b1241d24672a6b4583b8
- SHA1
  
  8d12b989d42b24558df9ff0089562ef8e8b648b8
- SHA256
  
  5d9b26f74928e8248fee1c46c92d42f58f76d0086939d26662e2ee1c11138362
- SHA512
  
  6ec5873a4f1bf31ba358046e2ac6da877fa38ea7f7bfe0ff8046ef14b44dd8f475045a3e79280c0d2f4b5e406bc43f0fe658c1124cfaee40847772f23dbc84d1
- SSDEEP
  
  1536:y7vwJaCuS/kQ0vGkb+4qF/DF9HtG4OLEkJ6:y8Ak/yekb+nhpnOLE9
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy