Malware Analysts Decode the Stealthy Tactics of the Latest Variant

XWorm is a powerful trojan that has received major updates since its first observation in 2022, making it one of the most persistent global threats. ANY.RUN researchers analyzed its latest version and noted its tactics, evasion methods, and additional mechanics. They discovered that XWorm uses numerous techniques for detecting virtualized environments, enables persistence within systems, and extracts system information. Further lifestyle measures – Residential Proxy and MITM proxy – are required to fully execute and examine malware.