xenorat | c58608465fdd9e411142345837b5f73857bf6d2dfd6fe81c6f3205396084dde0

General

Target

Rebound RAT.rar
Size

7.1MB
Sample

250118-sjyckswnaz
MD5

b45f80f30f60b34f5666e73f66d7e9d4
SHA1

53aca3af51eb65b3c09b42a0633f2b9e688a576c
SHA256

c58608465fdd9e411142345837b5f73857bf6d2dfd6fe81c6f3205396084dde0
SHA512

9ec405d3416128c1e085b5a6df914d951c0544d3f2da9dc431738cc46809bf77c1a3a043a07fb8040a733e818082766f1d4f6462c370bd5473bb7d5bdd143ba3
SSDEEP

196608:m7qvx6251cbe4EWpcJAGwadRo8iaBaOsVjaFOy:moxnjcvZpJGfoiBanjaFH

Score

10^/10

xenorat discovery

Malware Config

Targets

- Target
  
  plugins/Chat.dll
- Size
  
  11KB
- MD5
  
  746b17952ce19d49a2bb64a46b072008
- SHA1
  
  640a2e215c0db020ab549351b8692d53a8dffce1
- SHA256
  
  242f9c49e653a3df10d66859c66ac543b0bd5f7446dcfc170da835a084d16aed
- SHA512
  
  056d2690ceea819beead5f21eb91075df2098691105c25a186a9af4778f76b9d9cd72ffec46b33b0ed42635bddd5520da48c598ce3be028ff1c2522da14f2ca9
- SSDEEP
  
  192:Et5SEw0NmpdxSE2sECoxmTNny9+E9rcya8VkXI:4EP0NmR+CoxmTNng+Emy1VkXI
Score

4^/10

discovery
behavioral1
- Target
  
  plugins/File manager.dll
- Size
  
  16KB
- MD5
  
  71d7f50ce374b7d9c280a2873f1346f1
- SHA1
  
  4af5e351ab750721bf304b729d57d332d0510451
- SHA256
  
  c0f3f28f66d63afacc86aa5265e702a209e0328ffff8a48c92f840235034b82a
- SHA512
  
  9b0da18b8d2c81a8d77637efb2feb9d294a758dd313a260ad49ca8ef589af49dfe6d325e00bd7abc9e71f279fca4bcba66c41047de435ffe4229129547dd4973
- SSDEEP
  
  384:gAlqtn09rDgrPhQJBLjQ2z0A7VBvBGQEwZmya1HGrJxEHNg:/52qHMe0A7Vlo331mrJeNg
Score

1^/10
behavioral2
- Target
  
  plugins/Fun.dll
- Size
  
  10KB
- MD5
  
  d2aa072bd51171776032f51bae1c5315
- SHA1
  
  d3dfc3ee1297563d317b7ff514a385c6db78b077
- SHA256
  
  4a20277a305259b573c72003f63420ad71e94104dd53cf3c14df33f9c1f2f904
- SHA512
  
  31fe80e3f06d5ce866940d98e9dd78e4e564c7234493caae229ef274ba8bd724c24fdf2cfa66d5c6971a7f1245d2b38cc37ae4f5d8ee4032358d5993e9e3d5f0
- SSDEEP
  
  192:JuSQnh/1lrzX3fvzHfR8B+E9E1gdW9ONBhm:J1Qnh/rnX3fvLfSt9E11O3hm
Score

1^/10
behavioral3
- Target
  
  plugins/Hvnc.dll
- Size
  
  44KB
- MD5
  
  24b9f67a9c0ba67be355669fb6819a3a
- SHA1
  
  89eea87efbc7c155f65717e9190abd82f95767fe
- SHA256
  
  26ac80ad841bf4732c2d16666d1757d4d8d701e6095df7058adecf69a3a58b70
- SHA512
  
  a5b54dce2b7b1cb9607818313fe5865cf54ec4a06e20f73f62a4b61eb2100945d657fb6cad2cfd909f0062ce785c385bd47350ee8fa7e24ae3eadd21316fa717
- SSDEEP
  
  768:I6WH72TsRqvj62N0MPVxKVgr3TcJoQ8je8WHJiCVg5t3l8hpo31e5TtOR6iKPeyB:LWH7b2N0kVQVgrjcaQ8je8iJ3ot1cmav
Score

1^/10
behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4