General

  • Target

    https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqa21wUzVBaHF0V1J2ak1LS19yeTVjZ003WEUtQXxBQ3Jtc0tuTmh5Ny1PQzZkTm52LW9YVU83RWlVX0NyYjF0OWF6a0NMS2ROT29yb0QzejlrOFZ5VlMxOUhidUNTZEVSQ2tseVFsTnA1ODlvSkN3YkhYbXY1YmpxbFprbWVXUFZRaDJTZU9lNjVqZ21QSmFOZkt2Zw&q=https%3A%2F%2Fwww.mediafire.com%2Ffile%2Fa1fgw4fuh0tjb4f%2FRoPro_Rex%252528Open_Source%252529.zip%2Ffile

  • Sample

    240531-tbqhfadh25

Score
6/10

Malware Config

Targets

    • Target

      https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqa21wUzVBaHF0V1J2ak1LS19yeTVjZ003WEUtQXxBQ3Jtc0tuTmh5Ny1PQzZkTm52LW9YVU83RWlVX0NyYjF0OWF6a0NMS2ROT29yb0QzejlrOFZ5VlMxOUhidUNTZEVSQ2tseVFsTnA1ODlvSkN3YkhYbXY1YmpxbFprbWVXUFZRaDJTZU9lNjVqZ21QSmFOZkt2Zw&q=https%3A%2F%2Fwww.mediafire.com%2Ffile%2Fa1fgw4fuh0tjb4f%2FRoPro_Rex%252528Open_Source%252529.zip%2Ffile

    Score
    6/10
    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks