redline | Slipwares[.]7z | Triage

Submit
Reports

Static

static

Sharing

Copy URL Twitter E-mail

Static task

static1

skijay1 redline

1 signatures

General

Target

Slipwares.7z
Size

40KB
MD5

2d40f5128eec69df6e46448d4c934ead
SHA1

f3c9002af8ac2844c35e5bbdd926d9a7b0645677
SHA256

51c88e8ed2a0b0be0a940033a3968bb11eeb3861af047ec2035a3cfd3d9001ab
SHA512

dd324247487a9f46c1b749bbd3cc80b1b5aed42cbcd051e4c7ad02dbd3df252e2b57024a9e8724439ba016e6670d08409f9defeaf52ee34866af602c57fd08f6
SSDEEP

768:1nlY64OtwIVlrTPuEssV4iS72biHPFNlg9PVChSagfna5mz5837GqXtv:pFSIVlrzbstiCH981VPXna4I7dtv

Score

10^/10

skijay1 redline

Malware Config

Extracted

Family

redline

Botnet

Skijay1

C2

172.245.45.213:3235

Attributes

auth_value
82d7e893a177dea4f2450ad78b4797ca

Signatures

Redline family
redline

Files

Slipwares.7z
.7z

Password: infected
Slipwares.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy