redline | cb506997bebec10c3cf6b50d9069c78bc4789e8a8c6e276b0a7f156b6c7fc8c3[.]zip

General

Target

cb506997bebec10c3cf6b50d9069c78bc4789e8a8c6e276b0a7f156b6c7fc8c3.zip
Size

51KB
MD5

c30e32dd465b59f5e95c3d252bd0345c
SHA1

5590876c65742aeb6b57e33fdac65b9ea93b56c4
SHA256

db55efdc926d710427c6e2118a20ce213e27f21604acbf336df276730b27df23
SHA512

37b821667ef5b260b8a62099845d4e476c86e93a10e914656e84168900fae8b094a260c2abf3a9c1d8eca36bf71fc83064c49467348c6c0de4a285a3b17bd5ab
SSDEEP

1536:NNtocHpP9nJmKx9tD/QtCBFJGKIeyok1eIjlU:ftT37DQUvwhe/gxU

Score

10^/10

reiv redline

Family

redline

Botnet

reiv

C2

193.233.20.33:4125

Attributes

cb506997bebec10c3cf6b50d9069c78bc4789e8a8c6e276b0a7f156b6c7fc8c3.zip
.zip

Password: infected
cb506997bebec10c3cf6b50d9069c78bc4789e8a8c6e276b0a7f156b6c7fc8c3
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ