XWorm
· Published 21/12/2025 17:22 · Modified 21/12/2025 17:22
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 17:22
- Modified
- 21/12/2025 17:22
- Updated at
- 21/12/2025 17:22
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 10 attack patterns (mitre), 1 malware, 22 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
10 MITREs 1 Malware 22 Observables 1 APT
Attack patterns (MITRE) (10)
-
T1056.001 usesKeylogging MITRE
-
T1059.003 usesWindows Command Shell MITRE
-
T1055 usesProcess Injection MITRE
-
T1041 usesExfiltration Over C2 Channel MITRE
-
T1055.012 usesProcess Hollowing MITRE
-
T1036 usesMasquerading MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1059.001 usesPowerShell MITRE
-
T1012 usesQuery Registry MITRE
-
T1057 usesProcess Discovery MITRE
Malware (1)
-
XWorm usesFamily
Indicators (22)
-
000185a17254cd8863208d3828366ec25ddd01596f18e57301355d4a33eac242indicates -
2b507d3ae01583c8abf4ca0486b918966643159a7c3ee7adb5f36c7bd2e4d70eindicates -
f279a3fed5b96214d0e3924eedb85907f44d63c7603b074ea975d1ec2fdde0b4indicates -
0c2bf36dd9ccb3478c8d3dd7912bcfc1f5d910845446e1adfd1e769490287ab4indicates -
df0096bd57d333ca140331f1c0d54c741a368593a4aac628423ab218b59bd0bbindicates -
64cbbbf90fe84eda1a8c2f41a4d37b1d60610e7136a02472a72c28b6acadc2fcindicates -
8d04215c281bd7be86f96fd1b24a418ba1c497f5dee3ae1978e4b454b32307a1indicates -
8106b563e19c946bd76de7d00f7084f3fc3b435ed07eb4757c8da94c89570864indicates -
6a0c1f70af17bd9258886f997bb43266aa816ff24315050bbf5f0e473d059485indicates -
d46bb31dc93b89d67abffe144c56356167c9e57e3235bfb897eafc30626675bbindicates -
31376631aec4800de046e1400e948936010d9bbedec91c45ae8013c1b87564d0indicates -
570e4d52b259b460aa17e8e286be64d5bada804bd4757c2475c0e34a73aeb869indicates