Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

35270a0692...a8.exe

windows7-x64

10

35270a0692...a8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    35270a0692daad63c217115444b18c541b53c80ebd26d605b3f4dc4009de61a8

  • Size

    329KB

  • Sample

    221227-t3c2esfb99

  • MD5

    02fb6af4ca32a077246d4df459ddde24

  • SHA1

    ce8ff6836a90734fa1c91ef8cdee4ce10c49748c

  • SHA256

    178a69064fc96e2288995abe5b16f351ebb3e66d113c40e4135004c65f9a6a6f

  • SHA512

    f76034510d2808aa55f930500873133057bb200a49d84138cc26ee35bb3411b1d9d302ab0119a6a765965243f9831ddd192acbce9148566340a7541412052ea5

  • SSDEEP

    6144:iGQmC6r7777777s7gUAHm+HSf7ceGgyoAxW90Jn370ba2ekRAU04pw1CWofCXtPc:XMRAHm+HSz50TxzGekLpwtq0Pc

Score
10/10
redline@new@2023discoveryinfostealerspywarestealer

Malware Config

Extracted

Family

redline

Botnet

@new@2023

C2

77.73.133.62:22344

Attributes
  • auth_value

    8284279aedaed026a9b7cb9c1c0be4e4

Targets

    • Target

      35270a0692daad63c217115444b18c541b53c80ebd26d605b3f4dc4009de61a8

    • Size

      430KB

    • MD5

      5b6475099bc679b985d4cbc75b37673d

    • SHA1

      b34dcb7ac05bfd9d6ade2c7d2bc0f95acc13bfc2

    • SHA256

      35270a0692daad63c217115444b18c541b53c80ebd26d605b3f4dc4009de61a8

    • SHA512

      a1fc13831da6a3381e7eb8eccdbbcc2d1ac7b1d8a0f4b39dbae50b3ebd7deb87d60f824ea2002d619dfaf8600dd3787ec4975a7b0860a31494a31810b9eb684a

    • SSDEEP

      6144:SLaAxHSfLceGgyOAxW90JnN70Ta2eGRAUeh58xQ3xDPkMo5zXbAc:SeAxHST50RxzeeGQh58xaxDPyrbA

    Score
    10/10
    redline@new@2023discoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.