xred | bf20cdfdabcb1b0703c357839fb576b5561a1ec584d9e00e48b7375bb1cbd498N[.]exe

General

Target

bf20cdfdabcb1b0703c357839fb576b5561a1ec584d9e00e48b7375bb1cbd498N.exe
Size

753KB
MD5

b052a2f9e0f390804f9281d37bb876e0
SHA1

61791bf3bc3d2f4933871f7016359d9b79e92fd7
SHA256

bf20cdfdabcb1b0703c357839fb576b5561a1ec584d9e00e48b7375bb1cbd498
SHA512

9706dddf0b7bf7a9f25eb9597f6f9dd76a530efb6170ec1fca8093f4d4de27c6bed88caf6f6e807fe8aacc36201ee3aa078d35290c8eec5c25733792c69cb542
SSDEEP

12288:aMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9Ixr:ansJ39LyjbJkQFMhmC+6GD9+

Score

10^/10

xred

Family

xred

C2

xred.mooo.com

Attributes

email
xredline1@gmail.com
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978

https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download

https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1

http://xred.site50.net/syn/SUpdate.ini

https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download

https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1

http://xred.site50.net/syn/Synaptics.rar

https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download

https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1

http://xred.site50.net/syn/SSLLibrary.dll

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf20cdfdabcb1b0703c357839fb576b5561a1ec584d9e00e48b7375bb1cbd498N.exe