redline | d2571bff88f36b3de607bd51c6eb434983ab10eea176ad93049c8478773995e2[.]zip

General

Target

d2571bff88f36b3de607bd51c6eb434983ab10eea176ad93049c8478773995e2.zip
Size

51KB
MD5

3349d8d572cc76021ac2306476e2dd2c
SHA1

d310abb3252faac5bed73f6c54a311c0529c3b43
SHA256

69908c449ef645b8c21c3b2d1c6af78c9cda72c145cc7c592bddc1f86d936588
SHA512

7e1bb18c7de8efacaacb10b01167886ccce62eca939f7a6f81616c9b280ab4211082451e0759caad998203bc2d5efbb21fb32ed45eaa1d9d1aea38642234deb2
SSDEEP

1536:AByuzr/ZantEidwbWUxqB7bBtidOVEO5eZsTugrEq:AT8tEidvtBUsic4CPrEq

Score

10^/10

muse redline

Family

redline

Botnet

muse

C2

176.113.115.145:4125

Attributes

d2571bff88f36b3de607bd51c6eb434983ab10eea176ad93049c8478773995e2.zip
.zip

Password: infected
d2571bff88f36b3de607bd51c6eb434983ab10eea176ad93049c8478773995e2
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ