redline | b769f97d42446ebcc4bac66aab1e6b00bd39e33fcd53ec0bdc068e5977bec559[.]zip

General

Target

b769f97d42446ebcc4bac66aab1e6b00bd39e33fcd53ec0bdc068e5977bec559.zip
Size

51KB
MD5

e1008f122f9a3a79c4538de19fd68ae4
SHA1

74f48c0285dc2ea988eabd54e01c7400c75c696c
SHA256

6388c748c1d4c86ac8c04f3adddd2eff31f3c17df4316d705cbd2b110eee6ddd
SHA512

a659d7b4948948c7b828d7d4577a15c193039b56c2c902b72b8e6e2bc69428eba2989cb6c8d1214a39fb11ff5a1c1a934d17be75e9359a2b123e9c16de9326d1
SSDEEP

1536:/fZlP+MHWztHF9HVO0tvYDG9aiIJSghnuBE:L+MHQFHvtKLvhuBE

Score

10^/10

from redline

Family

redline

Botnet

from

C2

176.113.115.145:4125

Attributes

b769f97d42446ebcc4bac66aab1e6b00bd39e33fcd53ec0bdc068e5977bec559.zip
.zip

Password: infected
b769f97d42446ebcc4bac66aab1e6b00bd39e33fcd53ec0bdc068e5977bec559
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ