redline | d1366afdc4d24c0aac136b5c210023716087160321622a5c88c856ff67f201fc[.]zip

Resubmissions

08/05/2023, 15:21

230508-srhbbsbd24 10

08/05/2023, 15:17

230508-sn73ksbc86 10

Sharing

Copy URL Twitter E-mail

General

Target

d1366afdc4d24c0aac136b5c210023716087160321622a5c88c856ff67f201fc.zip
Size

64KB
MD5

27ba8ec85f8f01598d4bb7165d9f4653
SHA1

3dd007e55277306c781970cf733717ac8a5e4f9f
SHA256

3effa86ace2591d806b7a7ad3eb95262286cda63dc078a45274368dc90eb17ac
SHA512

3fdff41199e42db8d8db5f7a8c053cfb190f3a366921da8afd08330b535737cc6a6d8ef573a2029f2b96aed09a69411ebc076b27594081862b65bd345d7622ca
SSDEEP

1536:uKzwor+IrwuyX6PBWu7bindNnABpEXIMxsrojQO:MPybyXFu7+fnABCIMDH

Score

10^/10

lagu redline

Malware Config

Extracted

Family

redline

Botnet

lagu

217.196.96.101:4132

Attributes

auth_value
8c4969092a4e18461b2347c0aa54b6a5

Signatures

Redline family
redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d1366afdc4d24c0aac136b5c210023716087160321622a5c88c856ff67f201fc

Files

d1366afdc4d24c0aac136b5c210023716087160321622a5c88c856ff67f201fc.zip
.zip

Password: infected
d1366afdc4d24c0aac136b5c210023716087160321622a5c88c856ff67f201fc
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Extracted

Signatures

Files

Password: infected

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 128KB - Virtual size: 127KB

.rsrc Size: 39KB - Virtual size: 38KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 128KB - Virtual size: 127KB

.rsrc
Size: 39KB - Virtual size: 38KB

.reloc
Size: 512B - Virtual size: 12B