redline | bd7db9e1bf466359826823de098b817f9fd835ad8b2605e6663d2f5f53906097[.]zip

General

Target

bd7db9e1bf466359826823de098b817f9fd835ad8b2605e6663d2f5f53906097.zip
Size

51KB
MD5

000397a85e587cdf6d12604b65bcf2b4
SHA1

c8212e9630745e7302fffb8a46bc1e6d3f17a662
SHA256

81912d13f0a0b108284af61749e731331b58ee5bfb7fc84b94c853758987bc62
SHA512

ebd4d601bfd4c2d855d48ef2d45a6fbea11cee0122029f87b1adf997ad24c44627bd722bfe9165e735761101f2e42c256f009bd5052de364e6d96a52707ed9c6
SSDEEP

768:aKuLrMxDpeEu19AdbK2WvnSCgZgzBs8DwFRFXQI9jzmKsec6gJVyTBYck+RH9moA:aKuLwxumd2nqCzwF7rM/LVyTZIoNgD3j

Score

10^/10

duna redline

Family

redline

Botnet

duna

C2

176.113.115.145:4125

Attributes

bd7db9e1bf466359826823de098b817f9fd835ad8b2605e6663d2f5f53906097.zip
.zip

Password: infected
bd7db9e1bf466359826823de098b817f9fd835ad8b2605e6663d2f5f53906097
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ