Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

Realistic_...r.html

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Realistic_CNI_Generator.zip

  • Size

    435B

  • Sample

    230112-vnv45agh27

  • MD5

    71cce75cd323b443cbd10ca3143f47e8

  • SHA1

    32f1f1ceafeb2eb053c42d2a8bb2e469f8da1743

  • SHA256

    252cba620b83622b2028ef371a6daf54f0c9f7ef8bbe09d9926ac1c563d0be4b

  • SHA512

    93c89a6e0a6ad1db873389503a065ef70c89a527ca22ef71616fc1fc34a30ae00594b3066845f9d359ff007c107175a12e693e55311ffc275c28c39a665b67cc

Score
10/10
redlineblankinfostealer

Malware Config

Extracted

Family

redline

Botnet

BLANK

C2

192.95.57.121:46515

Attributes
  • auth_value

    aa29c5cd9d54830fad01184cfb64bc07

Targets

    • Target

      Realistic_CNI_Generator.zip

    • Size

      435B

    • MD5

      71cce75cd323b443cbd10ca3143f47e8

    • SHA1

      32f1f1ceafeb2eb053c42d2a8bb2e469f8da1743

    • SHA256

      252cba620b83622b2028ef371a6daf54f0c9f7ef8bbe09d9926ac1c563d0be4b

    • SHA512

      93c89a6e0a6ad1db873389503a065ef70c89a527ca22ef71616fc1fc34a30ae00594b3066845f9d359ff007c107175a12e693e55311ffc275c28c39a665b67cc

    Score
    10/10
    redlineblankinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks