redline | 9c76191115359b42218abcaf133f0f09d088e2f90ef1d60712f9c98688323d70[.]zip

General

Target

9c76191115359b42218abcaf133f0f09d088e2f90ef1d60712f9c98688323d70.zip
Size

51KB
MD5

e35afc2fd780d2a8bbea1196b5bcdd75
SHA1

19db8fac0f1fe0c389f055ba122f9b083e9c3ed0
SHA256

19fbe7b9f6e9c89dbba303c1987d67388b095daa05a11e16c67be6e4491bdc9e
SHA512

a3336d3a8e0239267f22f80d24036d8d4c6b648dfa2661b8545af09c18856ef059703ecdc005c0b79fc69eaec2a6d9dbc7a1baf587b52016d77ae9d17932fb90
SSDEEP

1536:0TU2C1KW+X1pX20w6Q7mwOxaurbncg+AUK+EIXt7mKI:0Ar1R+l85U4urb3+QIXBmR

Score

10^/10

renta redline

Family

redline

Botnet

renta

C2

176.113.115.145:4125

Attributes

9c76191115359b42218abcaf133f0f09d088e2f90ef1d60712f9c98688323d70.zip
.zip

Password: infected
9c76191115359b42218abcaf133f0f09d088e2f90ef1d60712f9c98688323d70
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ