Overview

overview

10

Static

static

3

Flycode_VP...er.exe

windows7-x64

10

Flycode_VP...er.exe

windows10-2004-x64

10

Resubmissions

14-11-2024 10:22

241114-mep8hsxhnm 10

14-11-2024 10:21

241114-md3gfs1ndp 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Flycode_VPN_installer.exe

  • Size

    725KB

  • Sample

    241114-md3gfs1ndp

  • MD5

    6214931316aef5b8f870d375a7649218

  • SHA1

    cfbded8b49b5c4c4ad1ab594010d14cb236463b0

  • SHA256

    32aaddf41bbed77709a5db74ed8a62e179f65486945cfb20ccaa6023686a6871

  • SHA512

    8eaa85a23fc4c5b38b08afbaad9ad7101f7c43e85fdc3e2841dac42e484b8af07ccea04b74d304dff39573d4e49747b49ca66f80444222268d1b8ab318e6e78f

  • SSDEEP

    12288:LxeQCJwvvFkyjj6ZqxdDXCXxFCQE1Vdr+iGkvii1KRlWPBboSWo69c32a6st7Ylm:NeQMwvNkn2DXCXxFCQE1Vdr+iGkvii1J

Score
10/10
xenoratrattrojan

Malware Config

Targets

    • Target

      Flycode_VPN_installer.exe

    • Size

      725KB

    • MD5

      6214931316aef5b8f870d375a7649218

    • SHA1

      cfbded8b49b5c4c4ad1ab594010d14cb236463b0

    • SHA256

      32aaddf41bbed77709a5db74ed8a62e179f65486945cfb20ccaa6023686a6871

    • SHA512

      8eaa85a23fc4c5b38b08afbaad9ad7101f7c43e85fdc3e2841dac42e484b8af07ccea04b74d304dff39573d4e49747b49ca66f80444222268d1b8ab318e6e78f

    • SSDEEP

      12288:LxeQCJwvvFkyjj6ZqxdDXCXxFCQE1Vdr+iGkvii1KRlWPBboSWo69c32a6st7Ylm:NeQMwvNkn2DXCXxFCQE1Vdr+iGkvii1J

    Score
    10/10
    xenoratrattrojan

    • Detect XenoRat Payload

    • XenorRat

      XenorRat is a remote access trojan written in C#.

      trojanratxenorat

    • Xenorat family

      xenorat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks