redline | a85b1ad45e8908234c6253de7dec647b[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

a85b1ad45e...7b.exe

windows7-x64

a85b1ad45e...7b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a85b1ad45e8908234c6253de7dec647b.exe

Resource

win7-20220812-en

redline druid discovery infostealer spyware stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a85b1ad45e8908234c6253de7dec647b.exe

Resource

win10v2004-20221111-en

redline druid discovery infostealer spyware stealer

windows10-2004-x64

6 signatures

150 seconds

General

Target

a85b1ad45e8908234c6253de7dec647b.exe
Size

175KB
MD5

a85b1ad45e8908234c6253de7dec647b
SHA1

84b391203840b3e5b38053a1a1989722fde2a188
SHA256

ebc799b1d3811388f9771247535859e33c4b1d334eb4b79e67ec1a7acb2c4ffd
SHA512

eb1825f728cc6f0b0bc19de2a3d285d3d9c7000a5441736efaa21f4f3ff792058eb89cb310d8ac4b401205c401db80bea515303cd5c08109d8073e5c695c8b5a
SSDEEP

3072:BxqZWBJaHEDgXeiIVsIe3V5FuhfHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOs:zqZVeiIODduh

Score

10^/10

druid redline

Malware Config

Extracted

Family

redline

Botnet

druid

C2

62.204.41.170:4132

Attributes

auth_value
fddcb4126f1d0ea4ac975511b3530e72

Signatures

Redline family
redline

Files

a85b1ad45e8908234c6253de7dec647b.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy