redeng[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

redeng.exe
Size

997KB
MD5

889999ccff9ea332708965081b44b40c
SHA1

3ba0dbdd60a06ca91260ef88dfe7f91ba6d6e016
SHA256

6929fd188bcc456f42fb738941d5bc5023446930c38daa2f4c0ae8886ad26b5f
SHA512

ce2ae6a2bcc4409d37335fe8d1deb0aed49b0c621d219051c1c5cfa6204c26a1b7b1afc675a9c76775a0503a3a63c2570d4839802d52f86f69c71eda66504e56
SSDEEP

24576:tQaZGsZ2+LnRQRuvSqC69fcLwWf136rhmnUlWqXtA:tQivZn1QcJZgTf13Oh/sqX

Score

N/A

Malware Config

Signatures

Files

redeng.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 994KB - Virtual size: 994KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ