redline | 4d8814191cfbbce6b42d418a32b99769[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

4d8814191c...69.exe

windows7-x64

4d8814191c...69.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4d8814191cfbbce6b42d418a32b99769.exe

Resource

win7-20220812-en

redline test infostealer

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

4d8814191cfbbce6b42d418a32b99769.exe

Resource

win10v2004-20221111-en

redline test infostealer

windows10-2004-x64

1 signatures

150 seconds

General

Target

4d8814191cfbbce6b42d418a32b99769.exe
Size

200KB
MD5

4d8814191cfbbce6b42d418a32b99769
SHA1

b8c64485fe4a7e80d1e1dead3fb99e58af282a24
SHA256

4218898ec41b5aa288ffce10821a3be86e55cb15fc33b14c947d5170f34b5028
SHA512

88d89e64960805e20febf5a1d13e5cdcf25207cb10a8322d8bf91de26e1345c41c1989313673bf73138964634cc88c82e4d9a048fa183156e967054d98af07fa
SSDEEP

3072:n0t+6wBv1Q6MY6goZJX6njjBG73ih4wVS3PwkrzpiuY:n0t+Z1GgoSOz

Score

10^/10

test redline

Malware Config

Extracted

Family

redline

Botnet

TEST

C2

138.201.195.134:15564

Attributes

auth_value
0e6f03b3998113df327e56b0a2f2e737

Signatures

Redline family
redline

Files

4d8814191cfbbce6b42d418a32b99769.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy