xred | edb6911bfd97649466b45b96c4354eb910ab789110e1bb01b82a15f19c1d22ec | Triage

Resubmissions

29-11-2024 09:18

241129-k9lgpsxmex 10

28-12-2023 04:40

231228-fal7qsdcf9 3

Sharing

General

Target

c40940cd48424b0c2b4ca27c98fbb190
Size

1.0MB
Sample

241129-k9lgpsxmex
MD5

c40940cd48424b0c2b4ca27c98fbb190
SHA1

d43ecda04d2c16c67ca654ad85cd43f2d373ff63
SHA256

edb6911bfd97649466b45b96c4354eb910ab789110e1bb01b82a15f19c1d22ec
SHA512

3c4e6282247ae3fbf9a78b801beb5342f77548e1a2c560cef52138efb795efbb7b3376f6a4524310e514c9f14abfce92b5b8c119f171e9574f7ac60a081e6a3f
SSDEEP

24576:WnsJ39LyjbJkQFMhmC+6GD90c40RDI1pE:WnsHyjtk2MYC5GD+l3w

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  c40940cd48424b0c2b4ca27c98fbb190
- Size
  
  1.0MB
- MD5
  
  c40940cd48424b0c2b4ca27c98fbb190
- SHA1
  
  d43ecda04d2c16c67ca654ad85cd43f2d373ff63
- SHA256
  
  edb6911bfd97649466b45b96c4354eb910ab789110e1bb01b82a15f19c1d22ec
- SHA512
  
  3c4e6282247ae3fbf9a78b801beb5342f77548e1a2c560cef52138efb795efbb7b3376f6a4524310e514c9f14abfce92b5b8c119f171e9574f7ac60a081e6a3f
- SSDEEP
  
  24576:WnsJ39LyjbJkQFMhmC+6GD90c40RDI1pE:WnsHyjtk2MYC5GD+l3w
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1