redline | 79fae6dbb2e4eec5606d16c115431057936aa8e477ed805c7c9ca2f76f728958[.]zip

General

Target

79fae6dbb2e4eec5606d16c115431057936aa8e477ed805c7c9ca2f76f728958.zip
Size

51KB
MD5

6145cb9e5eeb1da4f8a01b171b8ec54b
SHA1

91c860a082fefb53e36138bc9bece8195c05c315
SHA256

8e83a483b3b689ccc367188ce78262191a25750b235c3e2ffd6ad59863c6dad6
SHA512

3b88d2367c17923f82d7bde660c91b6351a692fd124453d3ce4b55cfc603ad8d73882f40c20904dc728d7d15232df2e6d4e0020bba6d6ad158ee88908986efa9
SSDEEP

1536:QiR0n/U02lgMWC+Z0L/Jw+hxP2dlGAQV3bxzB20BL:fW/U0cWCZtwgxOdUTb9B2y

Score

10^/10

braza redline

Family

redline

Botnet

braza

C2

193.233.20.32:4125

Attributes

79fae6dbb2e4eec5606d16c115431057936aa8e477ed805c7c9ca2f76f728958.zip
.zip

Password: infected
79fae6dbb2e4eec5606d16c115431057936aa8e477ed805c7c9ca2f76f728958
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ