xworm | 8dc951e63096ed828b6ca4dceca2be6b640ed9d22be9cd1cce0f3c9a3a6ac899 | Triage

Submit
Reports

Overview

overview

Static

static

45274.exe

windows7-x64

Sharing

General

Target

45274.exe
Size

55KB
Sample

250307-bxjmxa1xaz
MD5

076f9e877b6b14ac5c2b1b6ac29811f1
SHA1

efe0a06e24c13a17d96a07c17de476698518b9fc
SHA256

8dc951e63096ed828b6ca4dceca2be6b640ed9d22be9cd1cce0f3c9a3a6ac899
SHA512

55bb7cf094464ee9de854620eb47615c09019a0ad001cc38a0a9de88e0e8701e31db9824a1fd1659c4f0702e5f9e3aa8c525100663876ae3d0c2a7104c8949da
SSDEEP

768:Uz2AQ7vDyb7YoBBlschSX9CioNIdxbyCdG5g9VrV/WthgOUhZZ5xBy:bLO7uchS8io2xbyCd2uQDgOU1By

Score

10^/10

xworm discovery rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

45274.exe

Resource

win7-20240903-en

xworm discovery rat trojan

windows7-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

xworm

Version

3.1

C2

orders-ic.gl.at.ply.gg:45999

Attributes

install_file
USB.exe

Targets

- Target
  
  45274.exe
- Size
  
  55KB
- MD5
  
  076f9e877b6b14ac5c2b1b6ac29811f1
- SHA1
  
  efe0a06e24c13a17d96a07c17de476698518b9fc
- SHA256
  
  8dc951e63096ed828b6ca4dceca2be6b640ed9d22be9cd1cce0f3c9a3a6ac899
- SHA512
  
  55bb7cf094464ee9de854620eb47615c09019a0ad001cc38a0a9de88e0e8701e31db9824a1fd1659c4f0702e5f9e3aa8c525100663876ae3d0c2a7104c8949da
- SSDEEP
  
  768:Uz2AQ7vDyb7YoBBlschSX9CioNIdxbyCdG5g9VrV/WthgOUhZZ5xBy:bLO7uchS8io2xbyCd2uQDgOU1By
Score

10^/10

xworm discovery rat trojan
- Detect Xworm Payload
- Xworm
  Xworm is a remote access trojan written in C#.
  trojan rat xworm
- Xworm family
  xworm
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xwormdiscoveryrattrojan

© 2018-2025

Terms | Privacy