Overview

overview

7

Static

static

3

Xeno 1.18 FIXED.zip

windows7-x64

7

Xeno 1.18 FIXED.zip

windows10-2004-x64

1

net8.0-win...rprint

windows7-x64

6

net8.0-win...rprint

windows10-2004-x64

6

net8.0-win...t.json

windows7-x64

6

net8.0-win...t.json

windows10-2004-x64

6

net8.0-win...s.json

windows7-x64

6

net8.0-win...s.json

windows10-2004-x64

6

net8.0-win...re.pma

windows7-x64

6

net8.0-win...re.pma

windows10-2004-x64

6

net8.0-win...54.pma

windows7-x64

6

net8.0-win...54.pma

windows10-2004-x64

6

net8.0-win...rl-set

windows7-x64

6

net8.0-win...rl-set

windows10-2004-x64

6

net8.0-win...rprint

windows7-x64

6

net8.0-win...rprint

windows10-2004-x64

6

net8.0-win...t.json

windows7-x64

6

net8.0-win...t.json

windows10-2004-x64

6

net8.0-win...gs.dat

windows7-x64

6

net8.0-win...gs.dat

windows10-2004-x64

6

net8.0-win...re.dat

windows7-x64

6

net8.0-win...re.dat

windows10-2004-x64

6

net8.0-win...data_0

windows7-x64

6

net8.0-win...data_0

windows10-2004-x64

6

net8.0-win...data_1

windows7-x64

6

net8.0-win...data_1

windows10-2004-x64

6

net8.0-win...data_2

windows7-x64

6

net8.0-win...data_2

windows10-2004-x64

6

net8.0-win...data_3

windows7-x64

6

net8.0-win...data_3

windows10-2004-x64

6

net8.0-win...001.gz

windows7-x64

6

net8.0-win...001.gz

windows10-2004-x64

6

Resubmissions

12-10-2024 10:59

241012-m3mgja1frq 6

12-10-2024 10:54

241012-mzm9na1fjj 8

12-10-2024 10:51

241012-mx9pwawhjg 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Xeno 1.18 FIXED.zip

  • Size

    23.3MB

  • Sample

    241012-mx9pwawhjg

  • MD5

    d9e7849984e3104859af0f032370693c

  • SHA1

    6bf9f6c6c0b11615ab5c855144cfd7158ef7ae16

  • SHA256

    b593394a96a6e8589c815eaae68a457cba927d8051505562da5d16726f4c0277

  • SHA512

    605be5d92861f9e1382501cd195b9ef5ea5ca0d8099eef2b5db095c954883862445d56e2ecaed7c52efdca71ea35f828c8c8d04059131fee79b4fb4a34170a96

  • SSDEEP

    393216:d+/pKFG+pd2Si/IiPD6cNaX54TUL7jhQA55mfp2O3JBeX54TxLgjhQA55mfruiI8:cRKUlZ6TX5lxshnGX5Aaszuixv

Score
7/10
discovery

Malware Config

Targets

    • Target

      Xeno 1.18 FIXED.zip

    • Size

      23.3MB

    • MD5

      d9e7849984e3104859af0f032370693c

    • SHA1

      6bf9f6c6c0b11615ab5c855144cfd7158ef7ae16

    • SHA256

      b593394a96a6e8589c815eaae68a457cba927d8051505562da5d16726f4c0277

    • SHA512

      605be5d92861f9e1382501cd195b9ef5ea5ca0d8099eef2b5db095c954883862445d56e2ecaed7c52efdca71ea35f828c8c8d04059131fee79b4fb4a34170a96

    • SSDEEP

      393216:d+/pKFG+pd2Si/IiPD6cNaX54TUL7jhQA55mfp2O3JBeX54TxLgjhQA55mfruiI8:cRKUlZ6TX5lxshnGX5Aaszuixv

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/manifest.fingerprint

    • Size

      66B

    • MD5

      0c9218609241dbaa26eba66d5aaf08ab

    • SHA1

      31f1437c07241e5f075268212c11a566ceb514ec

    • SHA256

      52493422ac4c18918dc91ef5c4d0e50c130ea3aa99915fa542b890a79ea94f2b

    • SHA512

      5d25a1fb8d9e902647673975f13d7ca11e1f00f3c19449973d6b466d333198768e777b8cae5becef5c66c9a0c0ef320a65116b5070c66e3b9844461bb0ffa47f

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral3behavioral4

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/manifest.json

    • Size

      134B

    • MD5

      58d3ca1189df439d0538a75912496bcf

    • SHA1

      99af5b6a006a6929cc08744d1b54e3623fec2f36

    • SHA256

      a946db31a6a985bdb64ea9f403294b479571ca3c22215742bdc26ea1cf123437

    • SHA512

      afd7f140e89472d4827156ec1c48da488b0d06daaa737351c7bec6bc12edfc4443460c4ac169287350934ca66fb2f883347ed8084c62caf9f883a736243194a2

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral5behavioral6

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/protocols.json

    • Size

      3KB

    • MD5

      6bbb18bb210b0af189f5d76a65f7ad80

    • SHA1

      87b804075e78af64293611a637504273fadfe718

    • SHA256

      01594d510a1bbc016897ec89402553eca423dfdc8b82bafbc5653bf0c976f57c

    • SHA512

      4788edcfa3911c3bb2be8fc447166c330e8ac389f74e8c44e13238ead2fa45c8538aee325bd0d1cc40d91ad47dea1aa94a92148a62983144fdecff2130ee120d

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral7behavioral8

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/BrowserMetrics-spare.pma

    • Size

      1.2MB

    • MD5

      1045bfd216ae1ae480dd0ef626f5ff39

    • SHA1

      377e869bc123602e9b568816b76be600ed03dbd0

    • SHA256

      439292e489a0a35e4a3a0fe304ea1a680337243fa53b135aa9310881e1d7e078

    • SHA512

      f9f8fcc23fc084af69d7c9abb0ef72c4684ac8ddf7fa6b2028e2f19fd67435f28534c0cf5b17453dfe352437c777d6f71cfe1d6ad3542ad9d636263400908fd2

    • SSDEEP

      3::

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral10behavioral9

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/BrowserMetrics/BrowserMetrics-66F88D85-3254.pma

    • Size

      1.2MB

    • MD5

      8bf75f235e5a0b35c967d2d8562660ae

    • SHA1

      559e82a64ca53a8a4dcdca350089484096f80580

    • SHA256

      06b08fb44903a1a752792064f7b4a67d9c02e206696f0fa19d9904815ef8b0b6

    • SHA512

      108dbf37815e8f969733dd1fef38ee46c7c487b43e061ea02abe438801ff86a108d71d8cea4ba78ebe453e9efcaa1bf6556f70b3f7042a1727d0fe211d8e1014

    • SSDEEP

      1536:iZ7zCQAIMy1pME5TRGg1DRFFZbqaRGwV0U5BzAs4g0y9/qfA849tUIod:iZ7WQFMUME5Mg1HFZbqz+vzAs4ghO

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral11behavioral12

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/CertificateRevocation/6498.2023.8.1/crl-set

    • Size

      21KB

    • MD5

      d246e8dc614619ad838c649e09969503

    • SHA1

      70b7cf937136e17d8cf325b7212f58cba5975b53

    • SHA256

      9dd9fba7c78050b841643e8d12e58ba9cca9084c98039f1ebff13245655652e1

    • SHA512

      736933316ee05520e7839db46da466ef94e5624ba61b414452b818b47d18dcd80d3404b750269da04912dde8f23118f6dfc9752c7bdf1afc5e07016d9c055fdb

    • SSDEEP

      384:Vt71+czeWhU6yVS2Ddc0fp/9yYoIJgWUeJuDzeG0LOsr2h9ltQYX9hVPz/HG1pBu:j4sBwVPDdFhVyYoPWUiuXeG0K5dQYXFr

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral13behavioral14

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/CertificateRevocation/6498.2023.8.1/manifest.fingerprint

    • Size

      66B

    • MD5

      33fc4bf1927352bc1845acdde3a6ba63

    • SHA1

      63ac2f004ac10198e729e9ccf55f6ac4f7f3c622

    • SHA256

      4ed04e713c9d8f5d80e83645b62f1be84ec0516d37f339b3d443d8f792dea113

    • SHA512

      7e38e264713750baf58dd9ad779885a7aae5a6fcb825eaa44b3cf814dd09cd0bf8f95b5ab5db600d19a64b02ec2155b4c9a3bc2a86e9b18eece8b3100e8c2ff1

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral15behavioral16

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/CertificateRevocation/6498.2023.8.1/manifest.json

    • Size

      113B

    • MD5

      b6911958067e8d96526537faed1bb9ef

    • SHA1

      a47b5be4fe5bc13948f891d8f92917e3a11ebb6e

    • SHA256

      341b28d49c6b736574539180dd6de17c20831995fe29e7bc986449fbc5caa648

    • SHA512

      62802f6f6481acb8b99a21631365c50a58eaf8ffdf7d9287d492a7b815c837d6a6377342e24350805fb8a01b7e67816c333ec98dcd16854894aeb7271ea39062

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral17behavioral18

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Crashpad/settings.dat

    • Size

      280B

    • MD5

      605a2eb8ef1c4e5149898f374fd19283

    • SHA1

      394a0efb49b9f9a02233629d107440ce0d37ea0b

    • SHA256

      83abcae929aba2820d555b30d39b9c17d8ec3519f153e5c5f645627827c948c7

    • SHA512

      7d7716e2b871f4baf488326ab19e7c1029a2daedb1aef9e07b47a9df6b8a9bf1d2d02a98a8cd1800179cc6f7ca625f11d293c3a3d47db34dad7361eb35b843b8

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral19behavioral20

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Crashpad/throttle_store.dat

    • Size

      20B

    • MD5

      9e4e94633b73f4a7680240a0ffd6cd2c

    • SHA1

      e68e02453ce22736169a56fdb59043d33668368f

    • SHA256

      41c91a9c93d76295746a149dce7ebb3b9ee2cb551d84365fff108e59a61cc304

    • SHA512

      193011a756b2368956c71a9a3ae8bc9537d99f52218f124b2e64545eeb5227861d372639052b74d0dd956cb33ca72a9107e069f1ef332b9645044849d14af337

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral21behavioral22

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_0

    • Size

      44KB

    • MD5

      66d9af03f4c3031691a86bf8f698fa17

    • SHA1

      aa09a7cf893f3b1ee92b39cafa7ab2a0d7a4130a

    • SHA256

      71375b0b4e35be68ff47686ccbab60517c3093a10253e652ed7eeecc6cf8852d

    • SHA512

      951c2326f478ebbce6b57258b52ea691b0f9b0055f975b48becf50177d9275715b4ce840f68737917955b61a489910e8d72418b9c14295817e84737847ac5aaf

    • SSDEEP

      3:MsFlYhXllLlX8l4X3lN+fl/Q8:/Fiz10M3lUNY

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral23behavioral24

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_1

    • Size

      264KB

    • MD5

      f13b585962de24fd69e5080353ba1d3c

    • SHA1

      5ec9537c9d04c2fd517719d0d4e47b22b0f5c549

    • SHA256

      136703dcde8dde9bf7a89ac1d32eab8ffec22c4ec9d09805833ac8b7a7816797

    • SHA512

      cb388525d3ff53444db8d260bc8da2a5c2b897e9d98fdfef1efbabbd414873c7ef255d9256ae67aaafc0e50f1ca298cce9f68a6c47542d102945b813b6cc205b

    • SSDEEP

      6:/M/PXGuEVt00ENP7mWElBufdMGYCCcgJU0OhI:U/PXK00ENPKWEgdMGYCGU0Oa

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral25behavioral26

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_2

    • Size

      8KB

    • MD5

      0962291d6d367570bee5454721c17e11

    • SHA1

      59d10a893ef321a706a9255176761366115bedcb

    • SHA256

      ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

    • SHA512

      f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

    • SSDEEP

      3:MsHlDll:/H

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral27behavioral28

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_3

    • Size

      4.0MB

    • MD5

      34602ca793319ebae9a639fc92d29f57

    • SHA1

      75bc468028daa3a75e53fb3a41797d85f32ad3ea

    • SHA256

      27b3b8eac788d45d6d2431d6cb2d4d13ed83fffb8d26568d76db293b72872566

    • SHA512

      b08c2bce23e5622f4838e6228fceaf55c94a2ede3a755979f75904bfe52460c03f67a5b7ca6aa47735cdf8abf7590d93e1fb7713c57def54b8bfff4f14cc033b

    • SSDEEP

      96:iNzXB9CaP9YsrCBDt1bu4tyXiF10VM7cTOF2A3dFniudV:EfrClzbPIyAQ

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral29behavioral30

    • Target

      net8.0-windows/Xeno.exe.WebView2/EBWebView/Default/Cache/Cache_Data/f_000001

    • Size

      172KB

    • MD5

      4583049bc4d434d2475ff72260f94eec

    • SHA1

      8254900f216c319b38edf2a5a36ae46eb3b0d3a2

    • SHA256

      c47d5a2c99f924b9c8939fc6da9c5a422c0dc36f5fae5a01e547cd488dc8f101

    • SHA512

      3689af5e81e1c690817fa2ffc4d09c3ad6efb6a56e838ca26855a6e6d04aa639cfd4d82db0c8ce04edad2b5ce0827b9ff6b857d8e08dbe04ffdb1998e6b7677d

    • SSDEEP

      3072:XUy60ohiNA3LG+0zAprJ7sx1COzVLW9cYikgVuc6cYqYqvqhwxWOxWzWxvR4N528:XUykh20GrUTYx1/Jwcbk8upqY7+WWWzT

    Score
    6/10
    discovery

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
7/10

behavioral2

Score
1/10

behavioral3

discovery
Score
6/10

behavioral4

discovery
Score
6/10

behavioral5

discovery
Score
6/10

behavioral6

discovery
Score
6/10

behavioral7

discovery
Score
6/10

behavioral8

discovery
Score
6/10

behavioral9

discovery
Score
6/10

behavioral10

discovery
Score
6/10

behavioral11

discovery
Score
6/10

behavioral12

discovery
Score
6/10

behavioral13

discovery
Score
6/10

behavioral14

discovery
Score
6/10

behavioral15

discovery
Score
6/10

behavioral16

discovery
Score
6/10

behavioral17

discovery
Score
6/10

behavioral18

discovery
Score
6/10

behavioral19

discovery
Score
6/10

behavioral20

discovery
Score
6/10

behavioral21

discovery
Score
6/10

behavioral22

discovery
Score
6/10

behavioral23

discovery
Score
6/10

behavioral24

discovery
Score
6/10

behavioral25

discovery
Score
6/10

behavioral26

discovery
Score
6/10

behavioral27

discovery
Score
6/10

behavioral28

discovery
Score
6/10

behavioral29

discovery
Score
6/10

behavioral30

discovery
Score
6/10

behavioral31

discovery
Score
6/10

behavioral32

discovery
Score
6/10