xworm | e6a07c0c643535a9b65fb286f4fafce14fafef0b830557e2d67f91f06ae2bbbc | Triage

Submit
Reports

Overview

overview

Static

static

cheat.exe

windows11-21h2-x64

Sharing

General

Target

cheat.exe
Size

197KB
Sample

250306-ky77bstzhv
MD5

6b60d478dc59ba2d30610d57d36a929b
SHA1

0b9240afd4338b4ec6608ea1a2ad4624fe02b1d8
SHA256

e6a07c0c643535a9b65fb286f4fafce14fafef0b830557e2d67f91f06ae2bbbc
SHA512

15967a5595bd8a2d413628a4d4d35f5bf60c3b4529c0d17216d43620918c386de1893e621985e8b04a508353e675f23b857c7fea11fe12aa247f0812626c2d4e
SSDEEP

3072:od9kkHFE9jM/Oju8SKfbzxcwg7es6/Vsb8VKTup49oJMfF/H9N3Ky9NzLns:oFE9wUhcX7elbKTuq9bfF/H9d9n

Score

10^/10

xworm rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

cheat.exe

Resource

win11-20250217-en

xworm rat trojan

windows11-21h2-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

xworm

Version

5.0

C2

ohsorry-20836.portmap.host:20836

Mutex

BV3jFFIYrb13VXbT

Attributes

install_file
USB.exe

aes.plain

Targets

- Target
  
  cheat.exe
- Size
  
  197KB
- MD5
  
  6b60d478dc59ba2d30610d57d36a929b
- SHA1
  
  0b9240afd4338b4ec6608ea1a2ad4624fe02b1d8
- SHA256
  
  e6a07c0c643535a9b65fb286f4fafce14fafef0b830557e2d67f91f06ae2bbbc
- SHA512
  
  15967a5595bd8a2d413628a4d4d35f5bf60c3b4529c0d17216d43620918c386de1893e621985e8b04a508353e675f23b857c7fea11fe12aa247f0812626c2d4e
- SSDEEP
  
  3072:od9kkHFE9jM/Oju8SKfbzxcwg7es6/Vsb8VKTup49oJMfF/H9N3Ky9NzLns:oFE9wUhcX7elbKTuq9bfF/H9d9n
Score

10^/10

xworm rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy