redline | 9e626d06441e87a2ffab2cea65f9045b9c79b46283191c9a952b2003d24830f8[.]zip

General

Target

9e626d06441e87a2ffab2cea65f9045b9c79b46283191c9a952b2003d24830f8.zip
Size

51KB
MD5

d5832a0e0562fbffce3cbdafdddc0196
SHA1

b7779151568dfd31112e507a7c524dba72124006
SHA256

d30da3c4d4eb3e1d4907e5c1d724eba9c5f569e3ac7710a0515f50a49c6353cf
SHA512

f0832b62ba84e08d48c48bc54135a03e67e27e69044bbdfefd8c2dce93527f2e570aec59bd852970be90840a2881e93df2243c4e9ac68eba20be909fc1a2020f
SSDEEP

1536:QBTU2C1KW+X1pX20w6Q7mwOxaurbncg+AU+s0jDbBc8CJ:QBAr1R+l85U4urb3++DbBoJ

Score

10^/10

renta redline

Family

redline

Botnet

renta

C2

176.113.115.145:4125

Attributes

9e626d06441e87a2ffab2cea65f9045b9c79b46283191c9a952b2003d24830f8.zip
.zip

Password: infected
9e626d06441e87a2ffab2cea65f9045b9c79b46283191c9a952b2003d24830f8
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ