Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e5ebf718a8ad97e805ef09e29328031037487740b6b578769aaf941b8a9815ba

  • Size

    2.4MB

  • Sample

    221101-nrkdgacdgn

  • MD5

    762b87a4069d5487eab33e98888b83ab

  • SHA1

    a0d53ba216c7e19de33dfd8ee93d612759c5973e

  • SHA256

    e5ebf718a8ad97e805ef09e29328031037487740b6b578769aaf941b8a9815ba

  • SHA512

    b70f58f602bd3d75ffdb65214bc6992ed28f95b3d97d5ac07348e6b32e33161bf9273dedc8b15e756c37223110e206e0537e5e0f0a704a5687813d11a639bf3e

  • SSDEEP

    24576:L5/rCYcYR05bQzGMr/l4L999/ERG38bZOh3NSpq4ncL1aqLzSkNrhg4NAOKl3Ruj:t/4//EYEdpcL1aq3kl3i

Score
10/10
redlineinfostealer

Malware Config

Extracted

Family

redline

C2

152.89.219.248:19932

Attributes
  • auth_value

    1ce8d1c03b89c32fe261476c277937ca

Targets

    • Target

      e5ebf718a8ad97e805ef09e29328031037487740b6b578769aaf941b8a9815ba

    • Size

      2.4MB

    • MD5

      762b87a4069d5487eab33e98888b83ab

    • SHA1

      a0d53ba216c7e19de33dfd8ee93d612759c5973e

    • SHA256

      e5ebf718a8ad97e805ef09e29328031037487740b6b578769aaf941b8a9815ba

    • SHA512

      b70f58f602bd3d75ffdb65214bc6992ed28f95b3d97d5ac07348e6b32e33161bf9273dedc8b15e756c37223110e206e0537e5e0f0a704a5687813d11a639bf3e

    • SSDEEP

      24576:L5/rCYcYR05bQzGMr/l4L999/ERG38bZOh3NSpq4ncL1aqLzSkNrhg4NAOKl3Ruj:t/4//EYEdpcL1aq3kl3i

    Score
    10/10
    redlineinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks