home

redsn0w.exe

MD5:
fbe37d45722e03530956031b81177dd4

SHA-1:
93c0035397a04b17db6a2ac3786f4af1d92cd42b

SHA-256:
69c8c272d74d2607d78f72088c2405b5650f502e55c72db9ecc75809917ef4cf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 9:34:18 PM UTC  (today)

File size:
14.5 MB (15,240,704 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
11/23/2010 5:46:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
393216:R5s4lWcTE56dIiA167WH+4E3ayYZnCgyev:R5buiAV43a3H9v

Entry address:
0x1240

Entry point:
55, 89, E5, 83, EC, 14, 6A, 02, FF, 15, CC, 40, 2A, 01, E8, BD, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 8B, 0D, 6C, 41, 2A, 01, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 2C, 41, 2A, 01, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 83, EC, 08, A1, E8, 37, 23, 01, 85, C0, 74, 3B, 83, EC, 0C, 68, 00, 40, 23, 01, E8, EC, 51, 1B, 00, 89, C2, 83, C4, 0C, B8, 00, 00, 00, 00, 85, D2, 74, 0F, 50, 50, 68, 0D, 40, 23, 01, 52, E8, E1, 51, 1B, 00, 5A, 59, 85, C0, 74, 0D, 83, EC, 0C...
 
[+]

Entropy:
7.4895

Packer / compiler:
Dev-C++ v5

Code size:
2.3 MB (2,392,576 bytes)

The file redsn0w.exe has been seen being distributed by the following 3 URLs.

http://s10803.chomikuj.pl/File.aspx?e=eUqPPy9T4-VfN-Mut0nncAy4hVePXwuUxafPQESWCdCFaeygnpJD8ArMqjYIumejCuZX2fg9A1mFgmFlVmZCS1e9sgJezIs4sNXt13KqqJCvS-0VHF-8SSHYgqS_D7tdx6Ie9Ty3ACuCHdEaFLp4hQ&pv=2

http://s10803.chomikuj.pl/File.aspx?e=eUqPPy9T4-VfN-Mut0nncAy4hVePXwuUxafPQESWCdAeEXDJVI4N9tkAMX7PmcL-8JtGo7wT0xkXMOTeyMe4DB8o1Y5dX36GRHE-rchnZ5xzatJ8fIH4Wvyyf3DbuPtR8miw2zNa3c3D5fJxK5dNKg&pv=2

http://ipodtouchisapro.net/jbpourlesnuls/.../redsn0w0.9.6b4.exe

Scan redsn0w.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.