Lime-Worm 0.5.8D is an advanced strain of malware that combines worm-like propagation with backdoor access and data exfiltration capabilities. Originally derived from earlier versions of the LimeRAT family, this iteration introduces new evasion techniques and attack vectors, making it a significant threat to individuals and enterprises.
Download Server 1 Download Server 2 Download Server 3
What is Lime-Worm 0.5.8D?
Lime-Worm 0.5.8D is a modular malware that operates as both:
- A self-replicating worm (spreads automatically across networks).
- A Remote Access Trojan (RAT) (allows attackers full system control).
It is primarily distributed via:
- Phishing emails.
- Exploit kits.
- Compromised software installers.
- USB drives (worm propagation).
Key Features of Lime-Worm 0.5.8D
1. Worm-Like Propagation
- Network Scanning – Searches for vulnerable devices on LAN/Wi-Fi.
- USB Auto-Infection – Copies itself to removable drives.
- Exploits SMB/RDP Vulnerabilities – Spreads via unpatched Windows systems.
2. Remote Access & Control
- Full Desktop Control (hidden VNC-like access).
- File System Manipulation (upload/download/delete files).
- Command Execution (PowerShell, CMD, scripts).
3. Data Theft & Surveillance
- Keylogging (captures passwords, credit card details).
- Screen Capture (takes periodic screenshots).
- Microphone & Webcam Hijacking (secretly records victims).
- Browser Data Extraction (steals saved logins, cookies).
4. Persistence & Evasion
- Registry Modification (ensures automatic startup).
- Process Hollowing (hides inside legitimate processes).
- Anti-Debugging Techniques (detects sandbox environments).
- Encrypted C2 (Command & Control) Traffic.
5. Additional Malicious Payloads
- Cryptocurrency Miner (silently mines Monero).
- Ransomware Module (optional file encryption).
- Botnet Recruitment (for DDoS attacks).
