General

  • Target

    Terminal.exe

  • Size

    265KB

  • Sample

    240906-y5bzcswfne

  • MD5

    4ef7fab8f31fea78f9339ff1b61ff955

  • SHA1

    feab88e721e59e6685d80fbbb62880679f16973c

  • SHA256

    bd96ab832522b95bc01637c0aa4d2a03cb9a36c1ace05ce6c0962586d3fd645f

  • SHA512

    1165dc71eab587b19c9a6b3d10c5ac513a9befd45d10719c482364f02dcd990aaf583080900fd1bd961de98b8088a4d0a4aa733f9a26af121bd8caeae262b693

  • SSDEEP

    3072:1qN4fDJNpygmDiAk5vTol3pJVwEUQ7HlPIXAJ/scSTVJJZMoondbrlp52:TfDJrygmGN6nNzlPIGUcSBJvM3dbxp

Malware Config

Targets

    • Target

      Terminal.exe

    • Size

      265KB

    • MD5

      4ef7fab8f31fea78f9339ff1b61ff955

    • SHA1

      feab88e721e59e6685d80fbbb62880679f16973c

    • SHA256

      bd96ab832522b95bc01637c0aa4d2a03cb9a36c1ace05ce6c0962586d3fd645f

    • SHA512

      1165dc71eab587b19c9a6b3d10c5ac513a9befd45d10719c482364f02dcd990aaf583080900fd1bd961de98b8088a4d0a4aa733f9a26af121bd8caeae262b693

    • SSDEEP

      3072:1qN4fDJNpygmDiAk5vTol3pJVwEUQ7HlPIXAJ/scSTVJJZMoondbrlp52:TfDJrygmGN6nNzlPIGUcSBJvM3dbxp

    • Detect XenoRat Payload

    • XenorRat

      XenorRat is a remote access trojan written in C#.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.