Xworm 3.1 (Top 100 VALIDATED)

: Commands to shut down, restart, or log off the victim. Malicious Payloads & Propagation

A group of graduate students at the University of Zurich released the first Xworm (v0.9) as an academic project. Its key innovations were: xworm 3.1

: A built-in chat option that allows the attacker to communicate directly with the victim via a pop-up window. Stealth and Persistence Antivirus Evasion : It scans for installed antivirus products using the root\SecurityCenter2 WMI namespace to remain undetected. UAC Bypass : Commands to shut down, restart, or log off the victim

The C2 traffic is protected from simple sniffing: : Commands to shut down