XWorm
· Published 21/12/2025 17:22 · Modified 21/12/2025 17:22
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 17:22
- Modified
- 21/12/2025 17:22
- Updated at
- 21/12/2025 17:22
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 10 attack patterns (mitre), 1 malware, 22 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
10 MITREs 1 Malware 22 Observables 1 APT
Attack patterns (MITRE) (10)
-
T1056.001 usesKeylogging MITRE
-
T1059.003 usesWindows Command Shell MITRE
-
T1055 usesProcess Injection MITRE
-
T1041 usesExfiltration Over C2 Channel MITRE
-
T1055.012 usesProcess Hollowing MITRE
-
T1036 usesMasquerading MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1059.001 usesPowerShell MITRE
-
T1012 usesQuery Registry MITRE
-
T1057 usesProcess Discovery MITRE
Malware (1)
-
XWorm usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Indicators (22)
-
33ee1961e302da3abc766480a58c0299b24c6ed8ceeb5803fa857617e37ca96eindicates -
995869775b9d43adeb7e0eb34462164bcfbee3ecb4eda3c436110bd9b905e7baindicates -
8514a434b50879e2b8c56cf3fd35f341e24feae5290fa530cc30fae984b0e16cindicates -
b314836a3ca831fcb068616510572ac32e137ad31ae4b3e506267b429f9129b1indicates -
1990659a28b2c194293f106e98f5c5533fdad91e50fdeb1a9590d6b1d2983adaindicates -
4d225af71d287f1264f3116075386ac2ce9ee9cd26fb8c3a938c2bf50cca8683indicates -
4ce4dc04639d673f0627afc678819d1a7f4b654445ba518a151b2e80e910a92cindicates -
5123b066f4b864e83bb14060f473cf5155d863f386577586dd6d2826e20e3988indicates -
760a3d23ee860cf2686a3d0ef266e7e1ad835cc8b8ce69bfe68765c247753c6bindicates -
5314c7505002cda1e864eced654d132f773722fd621a04ffd84ae9bc0749b791indicates