xred | 61d3cc7ab792c03e4702d1c2e78190ed9f2808b69a3fdf3f9982cea72e114a3f | Triage

Resubmissions

29-11-2024 09:19

241129-k9953axmhs 10

27-12-2023 14:17

231227-rlt79sdfaq 3

Sharing

General

Target

b2d0572b60063a8b0a595a889da80839
Size

746KB
Sample

241129-k9953axmhs
MD5

b2d0572b60063a8b0a595a889da80839
SHA1

11db5e193e8c64fa1748eff29ded4df5d9242aaa
SHA256

61d3cc7ab792c03e4702d1c2e78190ed9f2808b69a3fdf3f9982cea72e114a3f
SHA512

8e5f6b5945196a0a65374c7689c2551b688d8e4a1a624252f3ddf621aa315f33c776364a698651b7bcc79ab2dc943fda0eabdfd78d6da82df25349a7bb5f58ef
SSDEEP

12288:+MSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9D:+nsJ39LyjbJkQFMhmC+6GD9

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  b2d0572b60063a8b0a595a889da80839
- Size
  
  746KB
- MD5
  
  b2d0572b60063a8b0a595a889da80839
- SHA1
  
  11db5e193e8c64fa1748eff29ded4df5d9242aaa
- SHA256
  
  61d3cc7ab792c03e4702d1c2e78190ed9f2808b69a3fdf3f9982cea72e114a3f
- SHA512
  
  8e5f6b5945196a0a65374c7689c2551b688d8e4a1a624252f3ddf621aa315f33c776364a698651b7bcc79ab2dc943fda0eabdfd78d6da82df25349a7bb5f58ef
- SSDEEP
  
  12288:+MSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9D:+nsJ39LyjbJkQFMhmC+6GD9
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1