Malware Analysis Report

2024-10-23 20:25

Sample ID 240904-w4b7mavbpk
Target xenoratclient.exe
SHA256 ee83bde159850a3c16d9186e142809ad93be3af768dd548ff25a57994e4c3e10
Tags
xenorat
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

ee83bde159850a3c16d9186e142809ad93be3af768dd548ff25a57994e4c3e10

Threat Level: Known bad

The file xenoratclient.exe was found to be: Known bad.

Malicious Activity Summary

xenorat

Xenorat family

Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-09-04 18:28

Signatures

Xenorat family

xenorat

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-09-04 18:28

Reported

2024-09-04 18:28

Platform

win7-20240708-en

Max time kernel

0s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-09-04 18:28

Reported

2024-09-04 18:28

Platform

win10v2004-20240802-en

Max time kernel

0s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A