[Malware] X-Ray

The following challenge description has been given:
lol it didn't load
We checked the filetype of the given file but it didn’t return notable.
lol it didn't load
We have a hunch that it may be a quarantined version of the malware created by Windows Defender. We ran dexray with it.
lol it didn't load
It worked! And it’s a dotnet so it’s easy to decompile with ilSpy.
lol it didn't load
We looked at the Main function and we can see two hex blob loaded.
lol it didn't load
We are also curious about the otp() function. Turns out that the two bytes are just being XORed together.
lol it didn't load
We used Cyberchef to do the XOR operation and got the flag.
lol it didn't load