xworm | 22adf85ad4591d2c4871440fe7ed023575be15e202ca0abe54c17c77cddca990 | Triage

Submit
Reports

Overview

overview

Static

static

Nincsmeger...67.exe

windows7-x64

Nincsmeger...67.exe

windows10-2004-x64

Sharing

General

Target

Nincsmegerstve50667.crdownload
Size

75KB
Sample

250303-sewces1shw
MD5

9fb584a7f293aa900e682cabe3faefcc
SHA1

043d316155bf973a2bb8f1d4ed29c2db7568854b
SHA256

22adf85ad4591d2c4871440fe7ed023575be15e202ca0abe54c17c77cddca990
SHA512

5c77d9d656357416b0663b437104702fcc3060ec1612726d07ee557b74f0c845725435a69c8090c20f6410e6ef4899d1347f201365b493a7ed739b9057b20b5a
SSDEEP

1536:GuIFQo65XTfSBtcLuJ5Hp+b5oFN7aS4V2EOOo/Z3VI8Ev:GuxJYL+b5z1OO2Z3VInv

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Nincsmegerstve50667.exe

Resource

win7-20240903-en

xworm rat trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

Nincsmegerstve50667.exe

Resource

win10v2004-20250217-en

xworm rat trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

xworm

C2

127.0.0.1:7000

Attributes

install_file
USB.exe

Targets

- Target
  
  Nincsmegerstve50667.crdownload
- Size
  
  75KB
- MD5
  
  9fb584a7f293aa900e682cabe3faefcc
- SHA1
  
  043d316155bf973a2bb8f1d4ed29c2db7568854b
- SHA256
  
  22adf85ad4591d2c4871440fe7ed023575be15e202ca0abe54c17c77cddca990
- SHA512
  
  5c77d9d656357416b0663b437104702fcc3060ec1612726d07ee557b74f0c845725435a69c8090c20f6410e6ef4899d1347f201365b493a7ed739b9057b20b5a
- SSDEEP
  
  1536:GuIFQo65XTfSBtcLuJ5Hp+b5oFN7aS4V2EOOo/Z3VI8Ev:GuxJYL+b5z1OO2Z3VInv
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy