xred | 53df520b20743f85cf986f5499e7db99d69ce89f9adfac9f0df86e190b968007 | Triage

Resubmissions

29-11-2024 09:17

241129-k9gthsxmdy 10

28-12-2023 07:26

231228-h9qejsgbd7 3

Sharing

General

Target

cfb4bbf4579434eaed7e76cf746d332b
Size

2.0MB
Sample

241129-k9gthsxmdy
MD5

cfb4bbf4579434eaed7e76cf746d332b
SHA1

ff33805418ca00caafa475dfd0cd7ff97fa5269b
SHA256

53df520b20743f85cf986f5499e7db99d69ce89f9adfac9f0df86e190b968007
SHA512

67de2fdbb0cedc05273db9d43906709992b8b7504f2568ebb6568c92c08bfa23b4bb0c974d1e3a74459b277c768186d763fce8d39bc847fcf7c303f859be9f4f
SSDEEP

49152:WnsHyjtk2MYC5GDNxQ+1fZapCa06tFGLIawTJIql:Wnsmtk2aixd1RNa0k4jwlIq

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  cfb4bbf4579434eaed7e76cf746d332b
- Size
  
  2.0MB
- MD5
  
  cfb4bbf4579434eaed7e76cf746d332b
- SHA1
  
  ff33805418ca00caafa475dfd0cd7ff97fa5269b
- SHA256
  
  53df520b20743f85cf986f5499e7db99d69ce89f9adfac9f0df86e190b968007
- SHA512
  
  67de2fdbb0cedc05273db9d43906709992b8b7504f2568ebb6568c92c08bfa23b4bb0c974d1e3a74459b277c768186d763fce8d39bc847fcf7c303f859be9f4f
- SSDEEP
  
  49152:WnsHyjtk2MYC5GDNxQ+1fZapCa06tFGLIawTJIql:Wnsmtk2aixd1RNa0k4jwlIq
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1