home

redsn0w.exe

Apple Inc.

This is installed with Apple Application Support (32-bit).
Publisher:
Apple Inc.  (signed and verified)

MD5:
3822cd5610284f25b8751c9109f990db

SHA-1:
9df6b92ebbb190804a9df36be24fca2ec4f0a567

SHA-256:
848b6b21fc035399d2f044d2f29e799c2de322cd44659e2a8545eb3c8f780951

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 10:10:41 PM UTC  (today)

File size:
15.5 MB (16,253,440 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Apple Inc.

Authority:
Apple Inc.

Valid from:
7/8/2007 7:08:03 AM

Valid to:
7/8/2010 7:08:03 AM

Subject:
OU=iPhone, O=Apple Inc., L=Cupertino, S=CA, C=US, CN=3851a67c8a70377738f150e3aaa665e94196d371

Issuer:
CN=Apple iPhone Device CA, OU=Apple iPhone, O=Apple Inc., C=US

Serial number:
038051601F4F41193BE9

File PE Metadata
Compilation timestamp:
2/3/2010 8:56:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
393216:/twSxJj9U3RjVufVlGU6r2r98KZ7H5g960:/itjVutg48KM8

Entry address:
0x1240

Entry point:
55, 89, E5, 83, EC, 14, 6A, 02, FF, 15, CC, A0, 39, 01, E8, BD, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 8B, 0D, 6C, A1, 39, 01, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 2C, A1, 39, 01, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 83, EC, 08, A1, 68, 9D, 32, 01, 85, C0, 74, 3B, 83, EC, 0C, 68, 00, A0, 32, 01, E8, DC, 19, 1B, 00, 89, C2, 83, C4, 0C, B8, 00, 00, 00, 00, 85, D2, 74, 0F, 50, 50, 68, 0D, A0, 32, 01, 52, E8, D1, 19, 1B, 00, 5A, 59, 85, C0, 74, 0D, 83, EC, 0C...
 
[+]

Entropy:
7.5925

Packer / compiler:
Dev-C++ v5

Code size:
2.3 MB (2,370,560 bytes)

The file redsn0w.exe has been discovered within the following programs.

Apple Application Support (32-bit)  by Apple Inc.
www.apple.com
8% remove it
 
Powered by Should I Remove It?

The file redsn0w.exe has been seen being distributed by the following 6 URLs.

temp:redsn0w.exe

http://download885.mediafire.com/0l655kx2hkog/.../redsn0w.exe

http://dc388.4shared.com/download/.../Redsn0w_094.exe

http://download1469.mediafire.com/y0en09wo3leg/.../redsn0w.exe

http://download1895.mediafire.com/jqsg93eybv9g/.../redsn0w.exe

http://www.mediafire.com/?c9ka5s91z5md4zh

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.