INSTALLER[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

INSTALLER.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

INSTALLER.exe

Resource

win10v2004-20230220-es

redline infostealer spyware

windows10-2004-x64

11 signatures

30 seconds

General

Target

INSTALLER.exe
Size

479.4MB
MD5

43419f7e188f034a4f89b113870581a0
SHA1

ca1762910a1169145ad49221ebf76b64e0db44b4
SHA256

2175df96480d4b2c408d0e5a01533f970ef6b46c5d66762e960e3d1d02498179
SHA512

d99e0cab1455b7b487d2a1657bff93c5caad0135f43421ed5124177525b8093883c7869b43106b14535bcb67fcdfef11026b494ccf78a90c2acf33c9e7c2f3a1
SSDEEP

49152:9YyZTz3ZgzgaZyqU1B2uFSBhopuQJcnomyGoFo20AtObf2ECPTMGNRZCq7vOz61D:dpqvU/2HfDacnoFVO4TMGvsqKE4lP99e

Score

1^/10

Malware Config

Signatures

Files

INSTALLER.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 520KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy