redline | jvgwaexeexeexeexeexeexeex[.]exe | Triage

Sharing

General

Target

jvgwaexeexeexeexeexeexeex.exe
Size

942KB
MD5

c5adddfbbb663e6f133ad58542966a5c
SHA1

02e71661f63eb831f5f0dfae0d045ee6c1f93042
SHA256

01f3a1e4bcd6a1c6118d76b9450c32766ba37b05b7203ff787f08f1cfa1c9b62
SHA512

cec76e2d5bf1c756341f25bc787f8e851ced9199135b3e7488e53fc62f5186815cb1e38aab1f9bdbb3c0cdf118df9074a6901d6e45a0be957477c1501035a5dd
SSDEEP

12288:ilvF1lALkkkkkkkkkkkkkkkkVlLfh/pUjY3xqrx49UcCkzA5YYz1kkkkkkkkkkkE:WTEl0Y3xq10UBpt/l0Y3xq10UBC

Score

10^/10

redline

Malware Config

Signatures

Redline family
redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
jvgwaexeexeexeexeexeexeex.exe

Files

jvgwaexeexeexeexeexeexeex.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 939KB - Virtual size: 938KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ