xred | a7b2252daa17a664b5b665865bf8b519915bceddbd94ee017fdaccaa7b7c645a | Triage

Resubmissions

29-11-2024 09:12

241129-k6ly3asmek 10

30-12-2023 21:31

231230-1c3ygscdgn 3

Sharing

General

Target

1d11417b6f8280dddd7eb958cc1ea577
Size

1.0MB
Sample

241129-k6ly3asmek
MD5

1d11417b6f8280dddd7eb958cc1ea577
SHA1

1d270cfbc746fbf55666d1e3d27e0dc8b6726874
SHA256

a7b2252daa17a664b5b665865bf8b519915bceddbd94ee017fdaccaa7b7c645a
SHA512

d9cc840fd689c0e080e5b8af7c3d90d3bf1e73b9f252b6528436d5fa313e65629ec46b7a10c0b6ff3771bfb416cd336979f59f4463576073cb18b53cf8fdd863
SSDEEP

24576:lnsJ39LyjbJkQFMhmC+6GD9zc40RDI1pE:lnsHyjtk2MYC5GDtl3w

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  1d11417b6f8280dddd7eb958cc1ea577
- Size
  
  1.0MB
- MD5
  
  1d11417b6f8280dddd7eb958cc1ea577
- SHA1
  
  1d270cfbc746fbf55666d1e3d27e0dc8b6726874
- SHA256
  
  a7b2252daa17a664b5b665865bf8b519915bceddbd94ee017fdaccaa7b7c645a
- SHA512
  
  d9cc840fd689c0e080e5b8af7c3d90d3bf1e73b9f252b6528436d5fa313e65629ec46b7a10c0b6ff3771bfb416cd336979f59f4463576073cb18b53cf8fdd863
- SSDEEP
  
  24576:lnsJ39LyjbJkQFMhmC+6GD9zc40RDI1pE:lnsHyjtk2MYC5GDtl3w
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1