Malware Analysis – xorist – e598e5ae61f73fb6b3883f6e79f05916

November 4, 2022

Malware Analysis

Score: 10

  • MALWARE FAMILY: xorist
  • TAGS:family:xorist, adware, persistence, ransomware, spyware, stealer, upx
  • MD5: e598e5ae61f73fb6b3883f6e79f05916
  • SHA1: 84063d5808f58c73871f8acea020f6a3e2382a30
  • ANALYSIS DATE: 2022-11-04T17:20:12Z
  • TTPS: T1112, T1176, T1060, T1005, T1081, T1012, T1120, T1082

ScoreMeaningExample
10Known badA malware family was detected.
8-9Likely maliciousOne or more known damaging malware attack patterns were detected.

Examples:
The deleting of shadow copies on Windows.
6-7Shows suspicious behaviourOne or more suspicious actions were detected. The detected actions can be malicious but also have (common) benign uses.

Examples:
Changing file permissions.
Anti-VM behaviour/trying to detect a VM.
2-5Likely benignOne or more interesting behaviours were detected. The detected actions are interesting enough to be notified about but are not directly malicious.
1No (potentially) malicious behaviour was detected.N/A
Tags: , , ,

You may have missed

image

[RHYSIDA] – Ransomware Victim: GEIGER

October 17, 2025
image

[BLACKSHRANTAC] – Ransomware Victim: SK shieldus

October 17, 2025
image

CVE Alert: CVE-2025-11899 – Flowring Technology – Agentflow

October 17, 2025
image

CVE Alert: CVE-2025-11898 – Flowring Technology – Agentflow

October 17, 2025
cybercrime

Devs Are Writing Vs Code Extensions That Blab Secrets By The Bucketload

October 17, 2025