xenorat | 1093f8595fa0c2fdee59e161eef983430af8f1f2e26545439d99b5d008b2ed8b | Triage

Submit
Reports

Overview

overview

Static

static

4b1608e881...cs.exe

windows7-x64

4b1608e881...cs.exe

windows10-2004-x64

Sharing

General

Target

4b1608e8817174b23e7a8a3d14f9c300_NeikiAnalytics
Size

28KB
Sample

240512-yc6chada71
MD5

4b1608e8817174b23e7a8a3d14f9c300
SHA1

0cfb0d7db8692c3061e3c63373a0e3c4f9389811
SHA256

1093f8595fa0c2fdee59e161eef983430af8f1f2e26545439d99b5d008b2ed8b
SHA512

73f8da3a811954fb30c288d38894d67c0dec49e5812937e4b859cf8f104d531fba09565e89aa32df0ff7306ab1b13c71675ac33ee7156fb957d7e8112a1fa33b
SSDEEP

768:GMwNCleHclp0mKWNDiA7Vgp4ybRb2rjAh:GvNUeH8KWND17VguylBh

Score

10^/10

xenorat rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

4b1608e8817174b23e7a8a3d14f9c300_NeikiAnalytics.exe

Resource

win7-20240215-en

xenorat rat trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

4b1608e8817174b23e7a8a3d14f9c300_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

xenorat rat trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

xenorat

C2

localhost

Mutex

testing 123123

Attributes

delay
1000
install_path
nothingset
port
1234
startup_name
nothingset

Targets

- Target
  
  4b1608e8817174b23e7a8a3d14f9c300_NeikiAnalytics
- Size
  
  28KB
- MD5
  
  4b1608e8817174b23e7a8a3d14f9c300
- SHA1
  
  0cfb0d7db8692c3061e3c63373a0e3c4f9389811
- SHA256
  
  1093f8595fa0c2fdee59e161eef983430af8f1f2e26545439d99b5d008b2ed8b
- SHA512
  
  73f8da3a811954fb30c288d38894d67c0dec49e5812937e4b859cf8f104d531fba09565e89aa32df0ff7306ab1b13c71675ac33ee7156fb957d7e8112a1fa33b
- SSDEEP
  
  768:GMwNCleHclp0mKWNDiA7Vgp4ybRb2rjAh:GvNUeH8KWND17VguylBh
Score

10^/10

xenorat rat trojan
- Detects XenoRAT malware
  XenoRAT is an open-source remote access tool (RAT) developed in C#.
  rat
- XenorRat
  XenorRat is a remote access trojan written in C#.
  trojan rat xenorat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xenoratrattrojan

behavioral2

xenoratrattrojan

© 2018-2024

Terms | Privacy