Blogs
Malware Library
Zero-Dwell Threat Intelligence Reports
WannaCry Ransomware Sample Embedding Multiple Tor Onion C2 Endpoints
.exe
Suspicious PE Executable Showing Strong WannaCrypt Ransomware Traits
.exe
overlay
corrupt
Backdoor Payload Adding RunKey Persistence And Defender Exclusions
.exe
long-sleeps
detect-debug-environment
calls-wmi
assembly
persistence
XWorm Variant Adding Defender Exclusions Through PowerShell Commands
.exe
long-sleeps
detect-debug-environment
calls-wmi
checks-user-input
assembly
persistence
obfuscated
XWorm V6.5 Payload Exhibiting Strong Sandbox Evasion Techniques
.exe
detect-debug-environment
checks-user-input
assembly
XWorm Variant Implementing Long-Sleep Delays To Evade Sandboxes
.exe
long-sleeps
overlay
detect-debug-environment
calls-wmi
assembly
XWorm Executable Using UPX Packing And Multiple AES Keys
.exe
long-sleeps
detect-debug-environment
executes-dropped-file
persistence
upx
XWorm V5.6 Payload Fetching C2 Instructions From Pastebin
.exe
64bits
overlay
spreader
Fox XWorm Payload Establishing Persistence Through RunKey Modifications
.exe
calls-wmi
assembly
persistence
payload
XWorm Backdoor Deploying USB Installer And AppData Persistence
.exe
long-sleeps
detect-debug-environment
calls-wmi
assembly
malware
XWorm Sample Employing AES Encryption For Command Traffic
.exe
long-sleeps
detect-debug-environment
calls-wmi
assembly
XWorm Variant Using AES Encryption For Command Communications
.exe
long-sleeps
detect-debug-environment
calls-wmi
checks-user-input
idle
assembly
payload
Posts navigation
← Previous
1
…
16
17
18
19
20
…
60
Next →
