redline | c5eca4b42075e50081acaf34dfe32f6702cc1abad5314bdba9471303ad0c1419[.]zip

General

Target

c5eca4b42075e50081acaf34dfe32f6702cc1abad5314bdba9471303ad0c1419.zip
Size

51KB
MD5

60a6af174712cf2169da87394e8698b4
SHA1

924a41c4414c2d925ffc870679c283d86337bb9f
SHA256

47d1ff37dd40a85de462946cb83607e718dbfa709177aaf320f74643cf5f8c99
SHA512

9a411653cc23310d00b62305522f1f7f7816e512efe7ee6361cbb207adc82c65f440695b07126ffdb6f4ef2898a38f6231ef06b6f5dd221eedbe99a00220140c
SSDEEP

1536:KTU2C1KW+X1pX20w6Q7mwOxaurbncg+AU+s0jDbBc8m:KAr1R+l85U4urb3++DbBg

Score

10^/10

renta redline

Family

redline

Botnet

renta

C2

176.113.115.145:4125

Attributes

c5eca4b42075e50081acaf34dfe32f6702cc1abad5314bdba9471303ad0c1419.zip
.zip

Password: infected
c5eca4b42075e50081acaf34dfe32f6702cc1abad5314bdba9471303ad0c1419
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ