redline | 061b62919f46f8d9f02140e626ee3fb1[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

061b62919f...b1.exe

windows7-x64

061b62919f...b1.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

5121940512_99 redline

1 signatures

Behavioral task

behavioral1

Sample

061b62919f46f8d9f02140e626ee3fb1.exe

Resource

win7-20220812-en

redline 5121940512_99 discovery infostealer spyware stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

061b62919f46f8d9f02140e626ee3fb1.exe

Resource

win10v2004-20221111-en

redline 5121940512_99 infostealer

windows10-2004-x64

1 signatures

150 seconds

General

Target

061b62919f46f8d9f02140e626ee3fb1.exe
Size

91KB
MD5

061b62919f46f8d9f02140e626ee3fb1
SHA1

28a0c078050717bec6582a3c386be837f8dc90e0
SHA256

3113aa7edb0e3f006ce555d414ac8aec3f1e291805d1eb7b2103e5c5f92d8328
SHA512

10872453f2eb71798320841528023f6f18b67dd25d40bf7572f1e8026dbb819595eb6f37047e70c8ff85f4e5d336572ec10c7d2228120a1587efad12b3a22f2f
SSDEEP

1536:C7FxGTEo7qcZL2LQEU4WcILxdtylKdNHtO8LnbrUMKGMc/A/IzKVqk/6xI/obwZz:Ix1EqcZL2MEU4WcILg8LbZnMc/QIzKV9

Score

10^/10

5121940512_99 redline

Malware Config

Extracted

Family

redline

Botnet

5121940512_99

C2

soccerschoolio.xyz:3306

soccerschoolio.xyz:28786

Attributes

auth_value
b2bd789e382f723abb14d658fc457e8f

Signatures

Redline family
redline

Files

061b62919f46f8d9f02140e626ee3fb1.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy