redline | 0bbb356207ce7cfaf9e8c3892682571bd2e6a4413b23bab57fbfb9eb584bbd9a[.]zip

General

Target

0bbb356207ce7cfaf9e8c3892682571bd2e6a4413b23bab57fbfb9eb584bbd9a.zip
Size

51KB
MD5

2513ed21315ac063da2406ce000dc3a8
SHA1

cb1dbb1a296b8e3e437488c0023d9904fa887726
SHA256

a228db81a998875219ec5e2956cd06bd09760cff18941146a0c7a28533194632
SHA512

99e7b9dd776c80421ec2374dfe21bbb04dd112ed96ee612eeec850537e751d8ed0d7c1fe8bdb6ac7de23eb50ecb3698b50f07d151fe8b00ee639a04192ce70b4
SSDEEP

1536:0Amx8HmaTLiyqnjB3QpjRJOl7+qQddUCnYZqn2:5mxs/qnijRJ8WKCn6qn2

Score

10^/10

fakus redline

Family

redline

Botnet

fakus

C2

193.233.20.20:4134

Attributes

0bbb356207ce7cfaf9e8c3892682571bd2e6a4413b23bab57fbfb9eb584bbd9a.zip
.zip

Password: infected
0bbb356207ce7cfaf9e8c3892682571bd2e6a4413b23bab57fbfb9eb584bbd9a
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ