home.social

#xwormrat — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #xwormrat, aggregated by home.social.

  1. Recent #stegocampaign delivering #XWorm RAT #malware samples.
    Quick review of #sandbox analysis reports reveal simple, yet interesting infection chain. It contains #VisualBasic script, #PowerShell scripts, picture with Base64-encoded executable and the #xwormrat itself. Those payloads have been downloaded from online hosting services such as #Pastebin and #Firebase.

    My new article with #IOC and analysis malwarelab.eu/posts/stego-xwor

    #steganography #Steganoanalysis #anyrun #malwareanalysis #obfuscation #cyberchef