Xworm - 3.1

| Category | Specific Commands | | :--- | :--- | | | Remote shutdown, restart, logoff, lock workstation, disable Task Manager, disable Registry Editor. | | Data Theft | Harvest saved passwords from Chrome, Firefox, Edge, and Opera. Steal FileZilla credentials, Discord tokens, and Steam sessions. | | Surveillance | Real-time webcam capture (via directX overlay), microphone recording (audio output to MP3), screen capture (JPEG quality 80%). | | Ransomware Module | A built-in ransomware locker (not a full crypto-locker, but a "browser locker" that freezes the screen with a fake police notice). | | DDoS Attack | Ability to turn infected machines into zombie bots for UDP/TCP/HTTP flooding attacks. | | Remote Shell | Full interactive cmd.exe access with administrative privileges. |

: Ability to capture video and audio from the infected device. Keylogging xworm 3.1

The latest variant making the rounds in threat intelligence feeds is . While version numbering in malware can often be arbitrary marketing by developers, the 3.1 build represents a significant refinement in evasion techniques and modularity. | Category | Specific Commands | | :---

XWorm 3.1 is often delivered through multi-stage attack chains: | | Surveillance | Real-time webcam capture (via