RedEngine[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RedEngine.exe
Size

42.5MB
MD5

b39b2c13e10b1caaf10dd1e215db525e
SHA1

1fee8eaf0acc6d82a6d23cd4bc04d1bdc403cded
SHA256

3c5bbde87c9069a2d92daded6c4ee14b98b1a99f7cacd1e69f3d6e845cdcbe08
SHA512

def542b24e1ee0580bb25e742ea2e08a541ddb2a9fc003a3f71e2cff4310691070d3e814b32261f1962baf28acdc8475f0b8e8328ff5a3084654a21fa18fac9c
SSDEEP

786432:ctJOqEoiud1RGo03IcmtjETupug9NOnP5m0itG29eGahIZa:cpEad1Rg4c0jEqpLgnP80itG2HaCM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RedEngine.exe

Files

RedEngine.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 42.5MB - Virtual size: 42.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ