xworm | b9321acd5582848dd946117d94aa70d3ae1f3a7a51971a13a7ceb0aad4199d6a | Triage

Submit
Reports

Overview

overview

Static

static

4dc4a9ba43...fb.exe

windows7-x64

4dc4a9ba43...fb.exe

windows10-2004-x64

Sharing

General

Target

4dc4a9ba4333732819395bbef22584fb.exe
Size

51KB
Sample

250125-thcj6azmft
MD5

4dc4a9ba4333732819395bbef22584fb
SHA1

2afd5bc52aa4308095ccc6149a184b37ed5824a1
SHA256

b9321acd5582848dd946117d94aa70d3ae1f3a7a51971a13a7ceb0aad4199d6a
SHA512

cebda37fe16f86b72da8d23bf0bc0b7ce8ca23c35607d355bc15bf5e890e67f9cdc4429a54f8cc5b569da19d0fd1a655c9f027cbf820700cd095d33591c59d53
SSDEEP

1536:Wc6sqFJ4llMfsE3rl4kkbRsDKAJ0OgnB:Wc18J4l+fT3pkbReB0OgB

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

4dc4a9ba4333732819395bbef22584fb.exe

Resource

win7-20241023-en

xworm rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

4dc4a9ba4333732819395bbef22584fb.exe

Resource

win10v2004-20241007-en

xworm rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

xworm

C2

92.255.85.66:7000

Attributes

install_file
USB.exe

Targets

- Target
  
  4dc4a9ba4333732819395bbef22584fb.exe
- Size
  
  51KB
- MD5
  
  4dc4a9ba4333732819395bbef22584fb
- SHA1
  
  2afd5bc52aa4308095ccc6149a184b37ed5824a1
- SHA256
  
  b9321acd5582848dd946117d94aa70d3ae1f3a7a51971a13a7ceb0aad4199d6a
- SHA512
  
  cebda37fe16f86b72da8d23bf0bc0b7ce8ca23c35607d355bc15bf5e890e67f9cdc4429a54f8cc5b569da19d0fd1a655c9f027cbf820700cd095d33591c59d53
- SSDEEP
  
  1536:Wc6sqFJ4llMfsE3rl4kkbRsDKAJ0OgnB:Wc18J4l+fT3pkbReB0OgB
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy