redline | 400000[.]AppLaunch[.]exe | Triage

Submit
Reports

Static

static

Resubmissions

01/01/2023, 17:00

230101-vh3xsacc38 10

01/01/2023, 15:27

230101-sv1bbaca79 10

Sharing

Copy URL Twitter E-mail

Static task

static1

@reimann_money redline

1 signatures

General

Target

400000.AppLaunch.exe
Size

175KB
MD5

8c9bd614b655fb75a7cc359a0262512f
SHA1

732fef0347b04fff5665c82d0eece5ad0bd7ac5c
SHA256

aa23cd24c54d70dc1bcfe1c1622658e68db574cab7e13cc40b44276eed43e08a
SHA512

2af6e45ca44ea7690e941daed335e44c9bca63e1b1db11ec2069dc1d3db3fdad86f06198699ba248a2325e5a9389e46f02f713c449d0f3cf7d0c435ce32fa30b
SSDEEP

3072:fxqZWXLaoQ1V8TfEWGljRey8Fah97xNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jK:JqZSTfEWYKah

Score

10^/10

@reimann_money redline

Malware Config

Extracted

Family

redline

Botnet

@reimann_money

C2

rllalasyeo.xyz:80

Attributes

auth_value
8733b2d685c45a8fac65c82454887bc4

Signatures

Redline family
redline

Files

400000.AppLaunch.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy