xred | e8d787a96e413c33610531983d9b4a84fd03a2ef04e7225eb2097e8c5489666f | Triage

Resubmissions

29-11-2024 09:11

241129-k52m5axkfy 10

30-12-2023 06:58

231230-hrh8hsaah3 3

Sharing

General

Target

1199a6e5a51eea1f139f727d8b45d1b5
Size

757KB
Sample

241129-k52m5axkfy
MD5

1199a6e5a51eea1f139f727d8b45d1b5
SHA1

e3ecf8555a59ad0715fd5c826b6e2df6de5c2ce8
SHA256

e8d787a96e413c33610531983d9b4a84fd03a2ef04e7225eb2097e8c5489666f
SHA512

0d68665b439b4e5d21bc3ab075277ceb4001a28294c8bed377c7f9d6058af5ef49f8ba897f0f6c190e956c2534c8c869e46ea1c6d079b21eda7e185e6c914a1c
SSDEEP

12288:LMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9I4:LnsJ39LyjbJkQFMhmC+6GD9

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  1199a6e5a51eea1f139f727d8b45d1b5
- Size
  
  757KB
- MD5
  
  1199a6e5a51eea1f139f727d8b45d1b5
- SHA1
  
  e3ecf8555a59ad0715fd5c826b6e2df6de5c2ce8
- SHA256
  
  e8d787a96e413c33610531983d9b4a84fd03a2ef04e7225eb2097e8c5489666f
- SHA512
  
  0d68665b439b4e5d21bc3ab075277ceb4001a28294c8bed377c7f9d6058af5ef49f8ba897f0f6c190e956c2534c8c869e46ea1c6d079b21eda7e185e6c914a1c
- SSDEEP
  
  12288:LMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9I4:LnsJ39LyjbJkQFMhmC+6GD9
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1