Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with XFilesStealer
Database Entry
| Malware: | XFilesStealer |
|---|---|
| First seen: | 2022-06-12 18:15:07 UTC |
| Last seen: | 2022-07-27 16:58:25 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2022-07-27 16:58:25 | 033e24f75513450128f833238b9365cb |  35 / 71 (49.30%)
| XFilesStealer | 165.22.226.149:8008 |
| 2022-07-26 15:32:59 | 6469b2046d39cbb049465d0603651645 | n/a | XFilesStealer | 62.108.37.84:8881 |
| 2022-07-25 11:16:08 | 2fc31fe50927c2855aa8dcd1f21b01ee | 48 / 70 (68.57%)
| XFilesStealer | 193.149.3.239:1938 |
| 2022-07-18 18:42:32 | cb30e0b296fd0d35e3d6a9629e06a7b1 | 45 / 70 (64.29%)
| XFilesStealer | 3.64.4.198:13315 |
| 2022-07-07 01:40:57 | 9f7d48fd36a1493b4c25131f95339bd6 | 43 / 69 (62.32%)
| XFilesStealer | 3.67.15.169:12728 |
| 2022-07-04 20:16:18 | 5cfca76bbb5a47cca3d51add90966fca | 27 / 69 (39.13%)
| XFilesStealer | 51.116.125.149:3537 |
| 2022-06-12 18:15:07 | 1cd8a8c46a32757f9e5288ea943de6f3 | 38 / 53 (71.70%)
| XFilesStealer | 77.247.127.10:9898 |