redline | 16ecebc94b0cc815c3768d6c21b8ef45[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16ecebc94b0cc815c3768d6c21b8ef45.bin
Size

120KB
MD5

16ecebc94b0cc815c3768d6c21b8ef45
SHA1

0dba633b24455c54a230d101f0bb3ad32e19e779
SHA256

d35143d38d6a7502f5aac39103898ce21fd9c01269b7adde6e7a802869a3a7e1
SHA512

d8610120c4eb849127148da8b24d0ae1ca350b425d32d2d834c1b020a81d95ed7ce4dd9ce05b294d12c75a7261ec89de88db8abcacbaff0b544b48bc59b4e8da
SSDEEP

3072:Z3HcjBPe7NerE+CrFkDSuOkZDcXiqEqVR6:ZeGKDRAX1

Score

10^/10

redline

Malware Config

Signatures

Redline family
redline

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16ecebc94b0cc815c3768d6c21b8ef45.bin

Files

16ecebc94b0cc815c3768d6c21b8ef45.bin
.exe windows:4 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ