Overview

overview

10

Static

static

10

5005fdcc88...cs.exe

windows7-x64

10

5005fdcc88...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe

  • Size

    126KB

  • MD5

    5005fdcc8839528f72d5a2914dcaa280

  • SHA1

    e11a6282de0c0ca3a742683daf7d32545ae8d309

  • SHA256

    e4c04592c8faf20732c6779618217eed8e4a4399bb3a92e95ed21793e79787fc

  • SHA512

    668fdc747aeca0399646dd77df1b18202cdb28e5b909108ad060466b49e8fc1dcf85a7b1dab704cb63991c223cb0c830a0c30dbfd9393210b0ffcce93d474b8e

  • SSDEEP

    3072:G6NjvPX6SlNqvJ699+h8eoMovPqZfP4e3bVzXVK:G4j6I+oMovPsdbZXV

Score
10/10
ratxenorat

Malware Config

Signatures

  • Detects XenoRAT malware 1 IoCs

    XenoRAT is an open-source remote access tool (RAT) developed in C#.

    rat
  • Xenorat family
    xenorat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5005fdcc8839528f72d5a2914dcaa280_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections