xred | 1e8738cc07b65b6a82663814e26d13efd4cb21a5b31afec4395610da5cc0b879 | Triage

Resubmissions

29-11-2024 09:17

241129-k9drvssnfn 10

28-12-2023 09:01

231228-ky3xlsfhb8 3

Sharing

General

Target

d497474011438afa611bc8b756857582
Size

757KB
Sample

241129-k9drvssnfn
MD5

d497474011438afa611bc8b756857582
SHA1

dd2e37d0f228d5c574389f4f3d2d5beab378fcb1
SHA256

1e8738cc07b65b6a82663814e26d13efd4cb21a5b31afec4395610da5cc0b879
SHA512

d2d3a5a65ebd05158ad4076ac92547b53ce053d3e859abd3c8da89c2011f0cf4458f88c225740a721e3fdb10a07c18db54f349ad2003a9c5a907e8a9ba8192eb
SSDEEP

12288:rMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9ISv:rnsJ39LyjbJkQFMhmC+6GD9

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  d497474011438afa611bc8b756857582
- Size
  
  757KB
- MD5
  
  d497474011438afa611bc8b756857582
- SHA1
  
  dd2e37d0f228d5c574389f4f3d2d5beab378fcb1
- SHA256
  
  1e8738cc07b65b6a82663814e26d13efd4cb21a5b31afec4395610da5cc0b879
- SHA512
  
  d2d3a5a65ebd05158ad4076ac92547b53ce053d3e859abd3c8da89c2011f0cf4458f88c225740a721e3fdb10a07c18db54f349ad2003a9c5a907e8a9ba8192eb
- SSDEEP
  
  12288:rMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9ISv:rnsJ39LyjbJkQFMhmC+6GD9
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1