Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

Intrunkhypho.exe

windows7-x64

10

Intrunkhypho.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Intrunkhypho.exe

  • Size

    278KB

  • Sample

    230109-1kwt5sfh86

  • MD5

    8866c407a31bcd11e2456843519f5109

  • SHA1

    068d8ebf28711bc63445932a39b564ac07527aad

  • SHA256

    83ded684d8501ecbb679d59ec349c702930aba7e3aea673ef92894e23b615d5e

  • SHA512

    c22f34790e805313eabfef72d46b9b834bacdb642f4f5fa944bb16b2bec8a8f20fc46fc1687f624e74843c046025c46c08f733722fec99f83c2b3db26fa24095

  • SSDEEP

    6144:O6FkdWDZKNjcsnyb+GU52LLzEokiqKsnhJIBDwKjWDhDocX3S:Gx0BFTEokiqJmhgxn

Score
10/10
redlineтест2infostealer

Malware Config

Extracted

Family

redline

Botnet

Тест2

C2

77.73.134.6:12530

Attributes
  • auth_value

    921a47f6e46cb473dd2ea93241d337aa

Targets

    • Target

      Intrunkhypho.exe

    • Size

      278KB

    • MD5

      8866c407a31bcd11e2456843519f5109

    • SHA1

      068d8ebf28711bc63445932a39b564ac07527aad

    • SHA256

      83ded684d8501ecbb679d59ec349c702930aba7e3aea673ef92894e23b615d5e

    • SHA512

      c22f34790e805313eabfef72d46b9b834bacdb642f4f5fa944bb16b2bec8a8f20fc46fc1687f624e74843c046025c46c08f733722fec99f83c2b3db26fa24095

    • SSDEEP

      6144:O6FkdWDZKNjcsnyb+GU52LLzEokiqKsnhJIBDwKjWDhDocX3S:Gx0BFTEokiqJmhgxn

    Score
    10/10
    redlineтест2infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks