XWorm v5.6 Malware Being Distributed via Webhards
Essential information
- Published
- 30/05/2024 14:34
- Modified
- 30/05/2024 15:32
- Tags
- 2024-05-30 xworm
- Related entities
- 3 observables, 10 techniques (mitre), 8 malware, 2 others
Description
Researchers discovered a campaign distributing the XWorm v5.6 malware disguised as adult games through Korean file-sharing platforms called webhards. The malware employs tactics like downloading encrypted components from command-and-control servers, injecting itself into legitimate processes, and conducting activities like keylogging, webcam data exfiltration, and additional malware downloads.