xenorat | e4c04592c8faf20732c6779618217eed8e4a4399bb3a92e95ed21793e79787fc | Triage

Submit
Reports

Overview

overview

Static

static

5005fdcc88...cs.exe

windows7-x64

5005fdcc88...cs.exe

windows10-2004-x64

Sharing

General

Target

5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe
Size

126KB
Sample

240522-2qtgmsbh6x
MD5

5005fdcc8839528f72d5a2914dcaa280
SHA1

e11a6282de0c0ca3a742683daf7d32545ae8d309
SHA256

e4c04592c8faf20732c6779618217eed8e4a4399bb3a92e95ed21793e79787fc
SHA512

668fdc747aeca0399646dd77df1b18202cdb28e5b909108ad060466b49e8fc1dcf85a7b1dab704cb63991c223cb0c830a0c30dbfd9393210b0ffcce93d474b8e
SSDEEP

3072:G6NjvPX6SlNqvJ699+h8eoMovPqZfP4e3bVzXVK:G4j6I+oMovPsdbZXV

Score

10^/10

xenorat rat trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe

Resource

win7-20240508-en

xenorat rat trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

xenorat rat trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe
- Size
  
  126KB
- MD5
  
  5005fdcc8839528f72d5a2914dcaa280
- SHA1
  
  e11a6282de0c0ca3a742683daf7d32545ae8d309
- SHA256
  
  e4c04592c8faf20732c6779618217eed8e4a4399bb3a92e95ed21793e79787fc
- SHA512
  
  668fdc747aeca0399646dd77df1b18202cdb28e5b909108ad060466b49e8fc1dcf85a7b1dab704cb63991c223cb0c830a0c30dbfd9393210b0ffcce93d474b8e
- SSDEEP
  
  3072:G6NjvPX6SlNqvJ699+h8eoMovPqZfP4e3bVzXVK:G4j6I+oMovPsdbZXV
Score

10^/10

xenorat rat trojan
- Detects XenoRAT malware
  XenoRAT is an open-source remote access tool (RAT) developed in C#.
  rat
- XenorRat
  XenorRat is a remote access trojan written in C#.
  trojan rat xenorat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xenoratrattrojan

behavioral2

xenoratrattrojan

© 2018-2024

Terms | Privacy