redline | ba1dd82b94a37e0b03169898322c3db6a2b098dfa19429d81f4bda4f953d847a[.]zip

General

Target

ba1dd82b94a37e0b03169898322c3db6a2b098dfa19429d81f4bda4f953d847a.zip
Size

51KB
MD5

4daf018c39b3dd18a4af856027cfd730
SHA1

b95c8af61e05b5b9c8e270cd6df61a53789d1018
SHA256

21119edc55fa4f24bef56804401dd24e480b6c634e7fa5f0f157316098a5439c
SHA512

cb8dab63eb2a9b615dac4d0569084ef2ba07ed9275edde76c0acb702f4f1f8f29e0ecaa39d2be39d20816852d084d357571a189301bbcca5a4a705bdfef60d0b
SSDEEP

1536:IfZlP+MHWztHF9HVO0tvYDG9aiIJSghnuBo:k+MHQFHvtKLvhuBo

Score

10^/10

from redline

Family

redline

Botnet

from

C2

176.113.115.145:4125

Attributes

ba1dd82b94a37e0b03169898322c3db6a2b098dfa19429d81f4bda4f953d847a.zip
.zip

Password: infected
ba1dd82b94a37e0b03169898322c3db6a2b098dfa19429d81f4bda4f953d847a
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ