redline | 0dcfbd7eb5c77375e55f845ceade408c83553a98b0f8515faff8c987f248e80b | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

meta139-4 redline

1 signatures

Behavioral task

behavioral1

Sample

0dcfbd7eb5c77375e55f845ceade408c83553a98b0f8515faff8c987f248e80b.exe

Resource

win10-20220812-en

redline meta139-4 discovery infostealer spyware stealer

windows10-1703-x64

6 signatures

150 seconds

General

Target

0dcfbd7eb5c77375e55f845ceade408c83553a98b0f8515faff8c987f248e80b
Size

90KB
MD5

fa7ef79facafed5b443f79e9564152eb
SHA1

45c587d87ebb7d7746aa8f8b938f266c2eb17f31
SHA256

0dcfbd7eb5c77375e55f845ceade408c83553a98b0f8515faff8c987f248e80b
SHA512

413362f9e32ac6f64dea610933930a0d1a7ca6f0508cd0ac07b183460f51f1965348b53051545b88b58b891b02477eb0b01b5da4af261b6fe57f034b83ee0c4c
SSDEEP

1536:IoJw101WKUhEDXrRim559HxOVhkNCwgbr+yZDP/nz0z/7f5+YwP1GCa:dJEEDXQm5vHYaqnVP/nz0z/7f5pwP1o

Score

10^/10

meta139-4 redline

Malware Config

Extracted

Family

redline

Botnet

meta139-4

C2

185.182.194.26:43717

Attributes

auth_value
8005e728aa4e39e22d1f31632a0e7d1b

Signatures

Redline family
redline

Files

0dcfbd7eb5c77375e55f845ceade408c83553a98b0f8515faff8c987f248e80b
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy