Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

c878faa671...6e.exe

windows7-x64

10

c878faa671...6e.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c878faa6712e56830ce6339c5738196e.exe

  • Size

    427KB

  • Sample

    221229-q5tkeadb67

  • MD5

    c878faa6712e56830ce6339c5738196e

  • SHA1

    d358f288679f54375b0ca52dcf9be6b12a37acc4

  • SHA256

    30dbe505b6889869f3dc9e7184afad2faa8c42dcc4381fb13a9d14271db61f59

  • SHA512

    38c52f21b580a668ccddfdcc8b45f45619ff907f0cc1467a85def3d1719db04748b59f40b791fcbe32edbdb52979cccd90b7f3c09b4f6580cbd82f2b98ed8942

  • SSDEEP

    6144:0U7SLVogNJrsXCn5TlJos/shgeh8nFJPlnBWa6Me/p8yIxZ1WqqdSJzJ9:X7SBBeQv8hgeeFzBWa6Me+dYST

Score
10/10
redlinesportdiscoveryinfostealerspywarestealer

Malware Config

Extracted

Family

redline

Botnet

sport

C2

31.41.244.98:4063

Attributes
  • auth_value

    82cce55eeb56b322651e98032c09d225

Targets

    • Target

      c878faa6712e56830ce6339c5738196e.exe

    • Size

      427KB

    • MD5

      c878faa6712e56830ce6339c5738196e

    • SHA1

      d358f288679f54375b0ca52dcf9be6b12a37acc4

    • SHA256

      30dbe505b6889869f3dc9e7184afad2faa8c42dcc4381fb13a9d14271db61f59

    • SHA512

      38c52f21b580a668ccddfdcc8b45f45619ff907f0cc1467a85def3d1719db04748b59f40b791fcbe32edbdb52979cccd90b7f3c09b4f6580cbd82f2b98ed8942

    • SSDEEP

      6144:0U7SLVogNJrsXCn5TlJos/shgeh8nFJPlnBWa6Me/p8yIxZ1WqqdSJzJ9:X7SBBeQv8hgeeFzBWa6Me+dYST

    Score
    10/10
    redlinesportdiscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.