xred | ee11731c6ae9cd3ba4a1875abb43e3aab3e7b85c42e8268d0f817362ac59ee0e | Triage

Resubmissions

29-11-2024 09:20

241129-la97fsxncy 10

26-12-2023 12:37

231226-ptk88adda2 3

Sharing

General

Target

6f0ac07c202cc306076a3e6390685e7f
Size

1.1MB
Sample

241129-la97fsxncy
MD5

6f0ac07c202cc306076a3e6390685e7f
SHA1

dc7c84610d468714ae80431e0413b9616cb48c95
SHA256

ee11731c6ae9cd3ba4a1875abb43e3aab3e7b85c42e8268d0f817362ac59ee0e
SHA512

2c8209941bedce069e42f95eeeb0df6d9852f18b7c035cd052e6763bd6510e4f67f8d194496cb412cd461c6cefd221fb5cd24633ee5061f4f5ed6d8e4f0e01e0
SSDEEP

24576:ynsJ39LyjbJkQFMhmC+6GD9iIxcnvXiAFGzNpeAVz:ynsHyjtk2MYC5GDHmn6hp7z

Score

10^/10

xred

Malware Config

Extracted

Family

xred

C2

xred.mooo.com

Attributes

email
[email protected]
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Targets

- Target
  
  6f0ac07c202cc306076a3e6390685e7f
- Size
  
  1.1MB
- MD5
  
  6f0ac07c202cc306076a3e6390685e7f
- SHA1
  
  dc7c84610d468714ae80431e0413b9616cb48c95
- SHA256
  
  ee11731c6ae9cd3ba4a1875abb43e3aab3e7b85c42e8268d0f817362ac59ee0e
- SHA512
  
  2c8209941bedce069e42f95eeeb0df6d9852f18b7c035cd052e6763bd6510e4f67f8d194496cb412cd461c6cefd221fb5cd24633ee5061f4f5ed6d8e4f0e01e0
- SSDEEP
  
  24576:ynsJ39LyjbJkQFMhmC+6GD9iIxcnvXiAFGzNpeAVz:ynsHyjtk2MYC5GDHmn6hp7z
Score

1^/10
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1