Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
3Xeno-v1.0.5-x64.zip
windows11-21h2-x64
8Xeno-v1.0....re.dll
windows11-21h2-x64
1Xeno-v1.0....ms.dll
windows11-21h2-x64
1Xeno-v1.0....pf.dll
windows11-21h2-x64
1Xeno-v1.0....no.dll
windows11-21h2-x64
1Xeno-v1.0....no.exe
windows11-21h2-x64
1Xeno-v1.0....s.json
windows11-21h2-x64
3Xeno-v1.0....UI.exe
windows11-21h2-x64
1Xeno-v1.0....g.json
windows11-21h2-x64
3Xeno-v1.0....x.html
windows11-21h2-x64
6Xeno-v1.0....ain.js
windows11-21h2-x64
3Xeno-v1.0....lua.js
windows11-21h2-x64
3Xeno-v1.0....in.css
windows11-21h2-x64
3Xeno-v1.0....ain.js
windows11-21h2-x64
3Xeno-v1.0.....de.js
windows11-21h2-x64
3Xeno-v1.0.....es.js
windows11-21h2-x64
3Xeno-v1.0.....fr.js
windows11-21h2-x64
3Xeno-v1.0.....it.js
windows11-21h2-x64
3Xeno-v1.0.....ja.js
windows11-21h2-x64
1Xeno-v1.0....nls.js
windows11-21h2-x64
1Xeno-v1.0.....ko.js
windows11-21h2-x64
1Xeno-v1.0.....ru.js
windows11-21h2-x64
3Xeno-v1.0....-cn.js
windows11-21h2-x64
1Xeno-v1.0....-tw.js
windows11-21h2-x64
3Xeno-v1.0....der.js
windows11-21h2-x64
1Xeno-v1.0....64.dll
windows11-21h2-x64
1Xeno-v1.0....64.dll
windows11-21h2-x64
1Xeno-v1.0....er.dll
windows11-21h2-x64
1Xeno-v1.0....er.dll
windows11-21h2-x64
1Xeno-v1.0....er.dll
windows11-21h2-x64
1Xeno-v1.0....sh.dll
windows11-21h2-x64
1Xeno-v1.0....td.dll
windows11-21h2-x64
1General
-
Target
Xeno-v1.0.5-x64.zip
-
Size
4.1MB
-
Sample
240921-tzvr3asakd
-
MD5
2082fb4c91583ef7c09766de61cdd1f2
-
SHA1
6bbc4f900c3df27731b00c9d57e3327d0e5c9199
-
SHA256
a19dc47dbaad01da2e029f993f013e3abc77cab80813bbb65fb3348226a938d5
-
SHA512
8ba3c313045933729ab6114aa5ce206d3f78c738bab78f7805a8123e954e32098a746559474cc7be587646d15fa223ad0c5aefd27dabec3a339f9cab65c78b06
-
SSDEEP
98304:4/eSPHy20NL9Cteaqxt5JwlVLnwphakez+XnDHS9aIhcewTvZRirOFRXLNt+zst:4WSfy1l9UeaSt5J4uhJeSLSZhQBRiiF3
Static task
static1
Behavioral task
behavioral1
Sample
Xeno-v1.0.5-x64.zip
Resource
win11-20240802-en
Behavioral task
behavioral2
Sample
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.Core.dll
Resource
win11-20240802-en
Behavioral task
behavioral3
Sample
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.WinForms.dll
Resource
win11-20240802-en
Behavioral task
behavioral4
Sample
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.Wpf.dll
Resource
win11-20240802-en
Behavioral task
behavioral5
Sample
Xeno-v1.0.5-x64/Xeno.dll
Resource
win11-20240802-en
Behavioral task
behavioral6
Sample
Xeno-v1.0.5-x64/Xeno.exe
Resource
win11-20240802-en
Behavioral task
behavioral7
Sample
Xeno-v1.0.5-x64/XenoUI.deps.json
Resource
win11-20240802-en
Behavioral task
behavioral8
Sample
Xeno-v1.0.5-x64/XenoUI.exe
Resource
win11-20240802-en
Behavioral task
behavioral9
Sample
Xeno-v1.0.5-x64/XenoUI.runtimeconfig.json
Resource
win11-20240802-en
Behavioral task
behavioral10
Sample
Xeno-v1.0.5-x64/bin/Monaco/index.html
Resource
win11-20240802-en
Behavioral task
behavioral11
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/base/worker/workerMain.js
Resource
win11-20240802-en
Behavioral task
behavioral12
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/basic-languages/lua/lua.js
Resource
win11-20240802-en
Behavioral task
behavioral13
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.css
Resource
win11-20240802-en
Behavioral task
behavioral14
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.js
Resource
win11-20240802-en
Behavioral task
behavioral15
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.de.js
Resource
win11-20240802-en
Behavioral task
behavioral16
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.es.js
Resource
win11-20240802-en
Behavioral task
behavioral17
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.fr.js
Resource
win11-20240802-en
Behavioral task
behavioral18
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.it.js
Resource
win11-20240802-en
Behavioral task
behavioral19
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ja.js
Resource
win11-20240802-en
Behavioral task
behavioral20
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.js
Resource
win11-20240802-en
Behavioral task
behavioral21
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ko.js
Resource
win11-20240802-en
Behavioral task
behavioral22
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ru.js
Resource
win11-20240802-en
Behavioral task
behavioral23
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.zh-cn.js
Resource
win11-20240802-en
Behavioral task
behavioral24
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.zh-tw.js
Resource
win11-20240802-en
Behavioral task
behavioral25
Sample
Xeno-v1.0.5-x64/bin/Monaco/vs/loader.js
Resource
win11-20240802-en
Behavioral task
behavioral26
Sample
Xeno-v1.0.5-x64/libcrypto-3-x64.dll
Resource
win11-20240802-en
Behavioral task
behavioral27
Sample
Xeno-v1.0.5-x64/libssl-3-x64.dll
Resource
win11-20240802-en
Behavioral task
behavioral28
Sample
Xeno-v1.0.5-x64/runtimes/win-arm64/native/WebView2Loader.dll
Resource
win11-20240802-en
Behavioral task
behavioral29
Sample
Xeno-v1.0.5-x64/runtimes/win-x64/native/WebView2Loader.dll
Resource
win11-20240802-en
Behavioral task
behavioral30
Sample
Xeno-v1.0.5-x64/runtimes/win-x86/native/WebView2Loader.dll
Resource
win11-20240802-en
Behavioral task
behavioral31
Sample
Xeno-v1.0.5-x64/xxhash.dll
Resource
win11-20240802-en
Behavioral task
behavioral32
Sample
Xeno-v1.0.5-x64/zstd.dll
Resource
win11-20240802-en
Malware Config
Targets
-
-
Target
Xeno-v1.0.5-x64.zip
-
Size
4.1MB
-
MD5
2082fb4c91583ef7c09766de61cdd1f2
-
SHA1
6bbc4f900c3df27731b00c9d57e3327d0e5c9199
-
SHA256
a19dc47dbaad01da2e029f993f013e3abc77cab80813bbb65fb3348226a938d5
-
SHA512
8ba3c313045933729ab6114aa5ce206d3f78c738bab78f7805a8123e954e32098a746559474cc7be587646d15fa223ad0c5aefd27dabec3a339f9cab65c78b06
-
SSDEEP
98304:4/eSPHy20NL9Cteaqxt5JwlVLnwphakez+XnDHS9aIhcewTvZRirOFRXLNt+zst:4WSfy1l9UeaSt5J4uhJeSLSZhQBRiiF3
-
Downloads MZ/PE file
-
Event Triggered Execution: Image File Execution Options Injection
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks system information in the registry
System information is often read in order to detect sandboxing environments.
-
Suspicious use of NtCreateThreadExHideFromDebugger
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
-
-
Target
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.Core.dll
-
Size
557KB
-
MD5
b037ca44fd19b8eedb6d5b9de3e48469
-
SHA1
1f328389c62cf673b3de97e1869c139d2543494e
-
SHA256
11e88b2ca921e5c88f64567f11bd83cbc396c10365d40972f3359fcc7965d197
-
SHA512
fa89ab3347fd57486cf3064ad164574f70e2c2b77c382785479bfd5ab50caa0881de3c2763a0932feac2faaf09479ef699a04ba202866dc7e92640246ba9598b
-
SSDEEP
12288:6CxswUBor35JrpQ322zy+uFKcDoRFNCMmeA+imQ269pRFZNIEJdIEY0lxEIPrEIE:6Cbmv
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.WinForms.dll
-
Size
37KB
-
MD5
8153423918c8cbf54b44acec01f1d6c2
-
SHA1
f0c3c5412b809725e6d4809230adb15cc7d83ad2
-
SHA256
5696366f7458da940cc986dc5d3d4549a2368512acd769014ecbb07b47bd88b4
-
SHA512
f3dc771e37c71479d332142ec5a9c5c3f39ca71937f595a0f7482ae5aaaafd92e932efc9b0363d4511d547f3c8b2e0497ebbf8356e7d07fc344f4e5715b0ee87
-
SSDEEP
768:1sjCEEHJ9l0EeFZ2sxIHzttZDgcEST3p4Jjrjh2jJ+SG2au8vxJKia5/Zi/ZGQKk:wCEB15azttZDgcEST3p4JjrjaJ+SG2a/
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/Microsoft.Web.WebView2.Wpf.dll
-
Size
50KB
-
MD5
4a292c5c2abf1aab91dee8eecafe0ab6
-
SHA1
369e788108e5fb0608a803fa2e5a06690b4464b5
-
SHA256
b628d6133bf57b7482a49aa158e45b078df73ee7d33137ac1336d24ac67ed1b4
-
SHA512
ca22adfff9789730e4c02343e320d80b8466cfc5a15f662cefe376b7ee29dea571004c1c26cd3f50c0d24e646f2b36b53fa86835678f46f335d65eec52431cde
-
SSDEEP
1536:gpGhWMhWLF9jwKi8LDP/ryEH0GBy4JjrD1aah/UaOzk6hKKa5/Bi/IGCv0Z0T6Cc:taBi8LDP/b0GBy4JjrD1aah/UaOzk6hz
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/Xeno.dll
-
Size
920KB
-
MD5
e9fa337f288f9d94abc3be48095c0e5e
-
SHA1
58e1da0f6d65c1964717ac59c61e992a0f8983c4
-
SHA256
a4aca0310fec7f751043230a779d63e055c3fd9b7cde98cac1d5bf127de4cd4b
-
SHA512
aaf70f519480762079856d70590cfce3110a12d8c889fe359b687fb829692ba61c5b22105ab4e51ce42fffe5f7f6aff3ce2aeec192b98133a7076671a1fbaf9d
-
SSDEEP
12288:CfjUPJ9a5W8HR/AoppoBLMAkACaFwwYCfvy1D4iCyvU94Kku:Ce9ctHR1pYdFCaFlYsvyl4MY4Kku
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/Xeno.exe
-
Size
140KB
-
MD5
c46b7e54e4b1e74eb907ed460c632350
-
SHA1
2a45cbb31a1c8808f3cc5e2606b9fe07a6ec0e57
-
SHA256
c79b8c1edf139d35dff7a26fd1ea4ba940133634fdc2e9bc7e5d571a707561e1
-
SHA512
8675f593d0f18e35df70bb8ec82915ca8713a513dda1c3a71ec94735d61e4d0fa770bfa42904ca9533aa89ede95bff4a3ce926efa74ddec91292aa812a5771fb
-
SSDEEP
3072:rjK4UGDHXrQ8hy7qgpHulWD9ZvZ5Pf3Ca10xuZ04ntfOUhBu7W:rjK4TDUqgpqWDLZ5H+xuZ04nhA
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/XenoUI.deps.json
-
Size
1KB
-
MD5
adf01c1c0a81176297965e424685eec8
-
SHA1
644054c065a3d91a1aaa5a270c34014f0ebc66b3
-
SHA256
a454fb2baacc65f63636ed252ecca0c52f9bf59c561a2646598bb4b0a9cdd1fc
-
SHA512
12f2e2108bec64a03f22b5642a1b5b58ab78ccf47508bd967113e3fd4b44a88bf585c47f152a1aae48fc89725c75f68e7fa01e12a8a82c6b3607326550e7373c
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/XenoUI.dll
-
Size
63KB
-
MD5
b6a319a989207745fa7f5337f941893a
-
SHA1
688b121b73605bc37d03a193f8226fba74aa8582
-
SHA256
fa8ceec373f352d960321f2eead2266eb7fe0c79ed6f4f2ca0944e6c5d506641
-
SHA512
79068fa9f8b23a97416a50fa3d26f0bb938ddead3424a99bed442b15e445d64126869a2ea2dfa7bfe7d3c4949c01947b8cc362b434bcffc00e36ac56fe00b483
-
SSDEEP
1536:kAB7LNpg9Tr/mGZrBMp9QllM/APHV5y67s0P9:kz9Tr/mGZlM7G7Pby67J9
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/XenoUI.runtimeconfig.json
-
Size
458B
-
MD5
07b9a30265ca4e69c7016a1b6e3ffc27
-
SHA1
3a4af82a2695b1423aedd8b60a5c86793c011b02
-
SHA256
c71152bf25e40d647b2440c5b39be157a3d356106be9d5b678ab97bb87b4e782
-
SHA512
efd582f8edcdba5ef48d02eee5f73d83ff35071af99b49e08e0213928568d728d0856e3b903bfcccb9237f786846cf94da83139f99e9bee86287aff2071c3f1c
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/index.html
-
Size
164KB
-
MD5
a9793319d1395e6f3564bba48465d42a
-
SHA1
1db3ca7fa5e0270c4e278755983d7af83110db0b
-
SHA256
02ac2ceafc55b77fc9ae9dd8c15285a4bb0247f5851ae601c9cbfef5228a8325
-
SHA512
f2d0fc7c9ab587cbf394ca0bef4647bf2f9370478c4ad9595192f3d03a35d74f514df9c8ca127a547db7a2dbd7ef988814cd9c05f907ef2e39c436e014f2c9c8
-
SSDEEP
3072:Nk4J09UmmJv8kBpZaFD48VOAGUWYPjDZlLJbRBiPEP8yKUz2Ojmjr8zM3KP7pblL:64J09BA3pZaFD48VOAGUWYPjdlLJbRB9
Score6/10-
Legitimate hosting services abused for malware hosting/C2
-
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/base/worker/workerMain.js
-
Size
133KB
-
MD5
d0ac5294c58e523cddf25bc6d785fa48
-
SHA1
1b3661b6db36f1b14fd80dc9a739bfc69c68dfe5
-
SHA256
e90d1a8f116fa74431117a3ad78dde16dde060a4bf7528dfe3d5a3ad6156504b
-
SHA512
fea07a1ea5d29a3b4c614248655f4d1ddd94c10c6a6b5c8b428a8b4c0cbec7e7492fa0665c5001e65ce167240ffdfc5ac2c2ed14da3d6f508ae8d8b3c8e8eebb
-
SSDEEP
3072:bzjH/zYJc5c/7tMLrJ78II4F9N8+em5W+:XjH/zYJc5c/76LrJ78I7BL
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/basic-languages/lua/lua.js
-
Size
4KB
-
MD5
eebda1fdd970433750c115eae2f03865
-
SHA1
3f1a1cddb99dead013eac825eb418241656d4bf0
-
SHA256
ac729efb3164f48d6b08f74d4b15060c126a30d40fb4cd4fc9cc94f2e19bd7c7
-
SHA512
8b188f3ae73a14a9318dce9761312d9dd2360ab00ee36e83ca6b74288a109c91770954db7537fd84a76707a1e79528fffc97f3a718bcd924545b469a1363c9cb
-
SSDEEP
96:HDGAW6FJJJkCO8evcIWtdrvrg+1/sLMiWAOKjLobLMzD:BWCDqC20IWtZD92pzOKvomD
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.css
-
Size
294KB
-
MD5
23c7db6e12f6454ef6e7fb98d17924d8
-
SHA1
06398b44a338db5eeab2d461347334fc69af5af1
-
SHA256
615824c59ed1e07f5924286e9f02f3120b9064d59e115d3f668a914e07839451
-
SHA512
5ed3103e4f6640ca71e103e7f3752aca3027d8c563084d519f9d6358018ccdfacd0c4c08b69e510f88effa2b56dce04241ee7f92f3db99d9077b49ed7271d924
-
SSDEEP
6144:TzsUTrsZ7KcNkuwcv2As0aMY/Y/RR9MtpWKco:TzsUTrsZXkW4/50i
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.js
-
Size
2.1MB
-
MD5
a7e3083cfe200263edfb4bf011b893a3
-
SHA1
18b52dc38e7a8a612892f5e60a08d9b19e1f472f
-
SHA256
9e2fb6171592f7a3c33d3b5baef58b516b36473ff7717bbd643574991923435e
-
SHA512
6bbb149102958e23c42accbbd18595fcfffd547bb826f2309956c036983692e83b7313567a42e50d98a1c946fab554e32b77ef4d0f8bc0cc7f0dda196fd7e23b
-
SSDEEP
24576:jFFExk98EXl2uRJxjP3Gdv6QLtQ2MbRpn:Yxk98EXl2ixjP3Gdv6QLtdMf
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.de.js
-
Size
46KB
-
MD5
d1fd2fb756c73970b9c5e0ba07bff708
-
SHA1
470057b3244886dccc9f6074297cc8bc2a9c1b39
-
SHA256
cb1c3416ff242a738c45c3b2590d7d222b159a95a69ce3b7b8d7c8d18ea70828
-
SHA512
db2432182ff4c85fcca5093d0e433ed9cf5bed3ea3db9ed82fedc87af4d260e0d0f29ff67f0b8ac78e162586a74998ad082a91e8f9a76717827a83d5b2f775cf
-
SSDEEP
768:ocuLC1xYdRB1a3Xq1GdigBoQqAaI/QQUEYPxFpXT1kF7bJZYmz7lehjDWMQRBk3Z:oclxgVuXq1GdiRQqAaI/QvEYPxFpDkbg
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.es.js
-
Size
46KB
-
MD5
36f546b28ca17ece9f8eb9bcf8344e13
-
SHA1
d43934b9041587799e332b2f568aa81666227258
-
SHA256
327437ee3793e9ae0686c78196b459592c282ed2e86f95ce28d32693b76d7654
-
SHA512
13f8cc23038c07b6840514db4fc7b503b7a38ae1ec3baab44f1bfbded40ac50ae03c05c754f9678eecd0c8fcefab958152b39b731068b8c2c976c4c57e97f36d
-
SSDEEP
768:oX8nKFyVgAYwTQG8zHqIkGMvnmvoKA9OfxjB3EVuU13pjbazPn0ANy7+IkLDKPp9:oMKFyVRcdzHqIkGMvnmvoKA9OfxjB3E5
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.fr.js
-
Size
49KB
-
MD5
1a29080733878dd44e0c118e84cd0c39
-
SHA1
60c158e23962b11918f6cae26445fad5b63bc65a
-
SHA256
6ed837dc1905c06a20d102921ff06a0bda003c5368ed0576bf7e69494e889ae8
-
SHA512
5cc68cabb583100320d7c875fd7c46f5c618c3968ac2a7c2b60f90ec74b29349a557049c17d5c851cabb54d5ef26cd65e8d2288d70b62ede06ee1762e25dbd60
-
SSDEEP
768:op8flgb2uZ5CcXQ6Q3edz3uzATaY3l0y+wj90TWIvkU5BkREPTtOjNjZocYV3A4k:owliv5Ccg67SATaYVKPkRskjNGBAa3k
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.it.js
-
Size
48KB
-
MD5
18e88f58301ad5ae926204507ab99c6b
-
SHA1
8eb03235312e88b941f3be212c0efa12b24e6d5f
-
SHA256
4fe2c4420294758883e134bdf7da9e6c2abf631d3a89c765f32f6c1d0f62653c
-
SHA512
f66283ec4182e9062f9f03a83acb3f2a49b98fb9ef67e48eaf5227236919ca279831b822fcb3ae252cfeafd81d12fe9c89a2843d91ab140a2b79b6bbc1d4f013
-
SSDEEP
768:opTEy7izsuMa01VaiYR2L8XoXNj8YtvnYbP4ymMb3d/gyKJdnPTrysribj5K3m05:of7fQ2qd4yq2FA1J1qn4VN7CgL
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ja.js
-
Size
52KB
-
MD5
3bf851cc70f515cbbe1d39da93e4f041
-
SHA1
88fe6323bbe14b55b6eec078574318e8474be613
-
SHA256
1f3556ea7233843b9e08b3c97b6727c533d702563e195c2090a438070dc85f0f
-
SHA512
61ffe9ec3550d2f8dfbc30d7d61327584833bb714a9d2cfc9788449190089dbdeaa293bb9921a43da782e1c36b7d242e13ac052b46210d2e79793626e921169d
-
SSDEEP
384:hyd/PwPtm+04LZ+FFHr0ZA9qOSTvvIEveG1vz14NdahWMpA1Uj4vHbX3IPDScLBV:olP4LsIOCaT3lJr/Tvk6892vU1ssD
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.js
-
Size
38KB
-
MD5
e871d4d9539c26d7d2bf32801ebdecf0
-
SHA1
711460f619ef09fa23d272d97bfc00593a5319a8
-
SHA256
5ff0084e6a7eee82a735616239aaf2190ea9d90e89e19340831f3d590828016a
-
SHA512
b6b9bf96c132db9dfc99d70320231630fc46a8a83f500d8e4f677e2d03206364f2666946f69061dcba2e759f005261dae1ece73e054aa56b8210551bc353cced
-
SSDEEP
384:hy38McmvQkKEQq4xlX7lrp1E1bIJUeYB4jV87XfVGT3H6Sq6Q4wCJjoce1u6I7JS:o38M7fQq4xPj7+lJcYYKqkGSVetbesy
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ko.js
-
Size
46KB
-
MD5
60fcd422ac97a1b645ff48cb6928f7af
-
SHA1
da5b57dfbd257720155e303f0e75e263f0e74190
-
SHA256
98e649fa40d8e2ccfdc212341feb8165a7d7bbec31e8a77d9819ad9474e4b8ba
-
SHA512
52439f47f1e12ccf37db40f9fa8fa4966579cd6b327cde1768187cd7fdc7ebdd444e1953e29ed09bdced40d764c2e8f7131d44908c00bfd350e856a9df661aa4
-
SSDEEP
768:oNOnmkUxK1pLkKgljQM1r0xXDj8kE6q2XlGZrAPPvzcDzr5u1QrWp4cX6go:o4ZUxKgKzxzrE63GZrAPPkrmQKp4cX6L
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.ru.js
-
Size
75KB
-
MD5
6e7d5b984917b00f131c47473ce2b866
-
SHA1
97f94134ff8f73ab48c0635550f2d8054c239c7f
-
SHA256
1bb069d95a395bf258d1f262814591aa762c4b30529adde32ccbcaa7c7ca508d
-
SHA512
f2595e7e1812073c50bfa058db3c7918dd8d7a6f0d20a576c68d854a4c61ed74bef3ad5ab23430567065677d737d81c7f17010055a069b9e38b5594d65e882a0
-
SSDEEP
1536:ox/PFmMhjpIMbBBKOXnPCSHhiaV6can9oA2yG+YQI/Y:QbhjpIcB8OXdHhiXcanGA2yGiI/Y
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.zh-cn.js
-
Size
36KB
-
MD5
05e49314cf801f5d3992b55243690ea7
-
SHA1
c20fca9f037adf2edec34ccf67a08e56d1d71bbf
-
SHA256
e9adc8ffca9853ef6e0bd4e955af9f395a570bc7772fc2dac0c0ff241aac864b
-
SHA512
7d499b41ae9bee2e72b721a49c0d053029624b19af1ede71a4378e14d3f6b407539c18d29422fb8d21681ce7dc160d2f11e80064017f5c8a5f645d6c1a77cc75
-
SSDEEP
768:oJbVMLHwwytIMTAlthuIjOP4CAz9NlL2/AdszzHsVBI/C4j00llmR+V66U:odPPZ+huIjTszzHs3IXj00llmMV6j
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/editor/editor.main.nls.zh-tw.js
-
Size
36KB
-
MD5
becbf441d95b0bc1565faf47ce9de373
-
SHA1
f660a8a29dc9861f7ff7e228622d492f1630b873
-
SHA256
94a7ff81b8ec3217a46bc5cdebe2c6aee98f73e6e902b7d9cf394836d052bbe5
-
SHA512
feee8ef6e36984309186b8ff491982efe4f144859c3f48d147b26bd61af6af751e013a951e945f02a2057368b485204734f6dc50cd6fca6294426b7fbdbcaa4f
-
SSDEEP
768:ozietcy+xQHM2k00fZvOHRUJdFF/JlN+QVtWrn05IxXUeqJ1wrv6Vl900U1LjK1G:o3sxQHM24ZvtdFF/zN+Q2LUeqJ1wrv6y
Score3/10 -
-
-
Target
Xeno-v1.0.5-x64/bin/Monaco/vs/loader.js
-
Size
29KB
-
MD5
bc15bb48d4d5c60ce7f16819f4d988c4
-
SHA1
87c7f328aa357d52b68b2cea0a214365a40cdc36
-
SHA256
5c3cf09973404ba31d760952f267751ef2bb09f315331d13ca432b65ce2c480b
-
SHA512
b5d7481773cafd01f3d738949a54e49c166c9a8fea3a150f6f0eed7449176d630991e27544a4e7b23fdad29700ae7fbba5de42f97c69874b6f2ad374194a9853
-
SSDEEP
768:o7J6CgCAqoxgiwYeMX/so92s8hHlDmc0yvrCfS5kUN+WV+X7:oV6lC8fwYeFKcV5k
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/libcrypto-3-x64.dll
-
Size
4.5MB
-
MD5
e3e4236c4483dbe1bc5954fd63c965b8
-
SHA1
ae8b364d2e43221466f2aa3f3c9412a713214c53
-
SHA256
923d7641e3655c627b80dfd63bd5e701a26e9b8b6186d56b901a60cb57494901
-
SHA512
7130ee5db3c7570f68b454df138926ac710e9095f1e4ff7d74ef0e329e793d20fe95eb6409730203cc706410c3efd2cf6b1c1eab26a655d29a1f74673cc8abc8
-
SSDEEP
98304:Al+fYmGXMIW67HknPRy41CPwDvt3uFGCC:cddXMIW67HknJy41CPwDvt3uFGCC
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/libssl-3-x64.dll
-
Size
802KB
-
MD5
4e2a30eba5388b0fe1838137a61ac255
-
SHA1
b6563a03f357478632d38f0f5ed28feb2af2ccf8
-
SHA256
ce0c322e48b95a719cd51728471e04197448d9f2ae1d0be0c99a745833dfd3a2
-
SHA512
4480c658eb4e3563f2622ba2a7f1f80a73e1f5aa27753030e1a7a8ca3abf07656067604e8042ca943d9cefc2524c830250dacf08ea7fc45d3bd7fa963b579917
-
SSDEEP
12288:SNQOYbewmdoyf/gLyfF/26v4yl/kP+1+MMDcdEVB3y:Szsmdo6PZ/O+oMMIdEVB3y
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/runtimes/win-arm64/native/WebView2Loader.dll
-
Size
136KB
-
MD5
8f2648cd543236ef1b4856715731e069
-
SHA1
c269e906556c160201fe229b9f6f3dde26888ac4
-
SHA256
77152af4472dc7741901ba69ce3a670992546eb2f5eda3db7fee135ee0037de0
-
SHA512
26bd06330e690dc73534ec2c54cd75149c0e96cbcfb34b9012532223db51d98b37b8b5c507d8d1a9b3829ea49493981d79cc1e5aaaa5b0d4b796a72f4420f2cc
-
SSDEEP
3072:VgpD1l8o58rpoJbMPN6OSBTj0zEtJW6hGo3:aphl8omrhlzEtJNhn
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/runtimes/win-x64/native/WebView2Loader.dll
-
Size
161KB
-
MD5
c5f0c46e91f354c58ecec864614157d7
-
SHA1
cb6f85c0b716b4fc3810deb3eb9053beb07e803c
-
SHA256
465a7ddfb3a0da4c3965daf2ad6ac7548513f42329b58aebc337311c10ea0a6f
-
SHA512
287756078aa08130907bd8601b957e9e006cef9f5c6765df25cfaa64ddd0fff7d92ffa11f10a00a4028687f3220efda8c64008dbcf205bedae5da296e3896e91
-
SSDEEP
3072:7evoTTlTRTyiuPThTNTKm81SbbMYSPLNsknZiZ2HZ5AaliiT88FEtJ57dXSvlCW:HTlTRTyiuPThTNTKmFQdhsknZiMHfEti
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/runtimes/win-x86/native/WebView2Loader.dll
-
Size
113KB
-
MD5
9d7744e15bb8e3d005079b18979c8544
-
SHA1
7b326c96e5f3f6baaf6e9390b119a4ffb3df2c64
-
SHA256
cc2f661aac9c05646933f717e629a69be93d8d06803066289d6dc1105aac6cd2
-
SHA512
732fd17714ec5ef0afd8f17d06adc895e93bea4585b6b1dabcf95c3fbe808e7b31a19c13cccfac0b30cd425cf96926749a0373a861f55fa8db442430803f4a25
-
SSDEEP
3072:rJ7FfqJR70vRq2KVsCKKa/gqeNZ/TvxEtJlAlp8Ugr4fm9IxK:r7fqJRQY0RKD5EtJeTMr2mV
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/xxhash.dll
-
Size
46KB
-
MD5
0e9fecea29b2b3d5ef064e112436e9d1
-
SHA1
69423218652f7837766ce03fe9edeaf751266cc5
-
SHA256
73c84884a2ccde1d10bec0820a6661920e70e4b53fa99ad510acf5ed1b36af97
-
SHA512
bd57bc9b8298faffc091b928537794a50c81d985d60edba7863e2976846cb08fd469c6054ff7ec574df6f0a2aea1fb72ed9cff44fa219e834129876293cd2e93
-
SSDEEP
768:SAziPp7yW4k3QDn24NuDUSu0MKQVMNKuxYAuogba4Mk3Qi9fCCFmj6I2:SAziR74kgDn2rDRuIrN5mAvgbTgihCCp
Score1/10 -
-
-
Target
Xeno-v1.0.5-x64/zstd.dll
-
Size
638KB
-
MD5
567198a0119e3e2ec94208f1cda7aa28
-
SHA1
350224b13d1cc2f944a4a2bdd951e9ef80be5784
-
SHA256
6c63d08182dede465c95e48a235894e598a61cc24e0ba4556637cc9c1a1e0951
-
SHA512
ed01636af37932dca7aa7709389dba184e16f93aa3be4fe622850df0f791c85111367a10434edf0c986079069a3574e0acdbbac4d9cae9c58fc01f9f034f40ec
-
SSDEEP
6144:IbauYl+rrR8uT4uB5uWYfO16oMynnjDHM8YHb96pddEybNFZeW8aLx492bDKIbbW:IbauYGT5BYMxjDHM809sddEyb9eWo2W
Score1/10 -
MITRE ATT&CK Enterprise v15
Persistence
Event Triggered Execution
2Component Object Model Hijacking
1Image File Execution Options Injection
1Privilege Escalation
Event Triggered Execution
2Component Object Model Hijacking
1Image File Execution Options Injection
1Defense Evasion
Modify Registry
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1