redline | 7a762cd556ed7f6246e19b479783886714833f25e614e7ed922b2e1aae28e2ec | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7a762cd556ed7f6246e19b479783886714833f25e614e7ed922b2e1aae28e2ec.exe

Resource

win10v2004-20230220-en

redline 0001 discovery infostealer spyware stealer

windows10-2004-x64

6 signatures

150 seconds

General

Target

7a762cd556ed7f6246e19b479783886714833f25e614e7ed922b2e1aae28e2ec
Size

175KB
MD5

ab64460cd667c1964fc0ee034ec60d15
SHA1

50aff9e5027939a6f3cb4d56dfa414f875e86f53
SHA256

7a762cd556ed7f6246e19b479783886714833f25e614e7ed922b2e1aae28e2ec
SHA512

4121eded29991d2273c5dab7937146fe1ae09af64138972d6c51952b8fba12847a3c9a76d7e32e9fa0a30294b5cee08fd428cf6150162fa0dba698ad7c288301
SSDEEP

3072:IxqZWRZaPkOQ3rbep5FCh1XxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuw+caH:2qZorYCh

Score

10^/10

0001 redline

Malware Config

Extracted

Family

redline

Botnet

0001

C2

195.133.40.209:13527

Attributes

auth_value
ecf595ee61db151a311a574809480fe7

Signatures

Redline family
redline

Files

7a762cd556ed7f6246e19b479783886714833f25e614e7ed922b2e1aae28e2ec
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy