Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file.exe

  • Size

    275KB

  • Sample

    230214-p88casde27

  • MD5

    e9b592d5808e9a9a99924dbb5c773963

  • SHA1

    ee13ed5594766bbb166442ecc28000c9d333d227

  • SHA256

    385f54b51f74a5e62f357a3deed60b12b9d4d92d79a4e5204a8751a6b54853c4

  • SHA512

    fabe5c6693e06a8b82f9b0ed95073caaad3251258b769347d7e67f90276676191a7682d2b04cfc94ac53f4244afc06ec0a6abbdeb1e930efb13a1afc42b10d73

  • SSDEEP

    6144:mdL9NgvQN0sIZ9GZpGkEwHJRR7J24hANL4tTTm0FJGu8:mdvizZ9cpGkrHJR1c4GL8TTm0Ll8

Malware Config

Targets

    • Target

      file.exe

    • Size

      275KB

    • MD5

      e9b592d5808e9a9a99924dbb5c773963

    • SHA1

      ee13ed5594766bbb166442ecc28000c9d333d227

    • SHA256

      385f54b51f74a5e62f357a3deed60b12b9d4d92d79a4e5204a8751a6b54853c4

    • SHA512

      fabe5c6693e06a8b82f9b0ed95073caaad3251258b769347d7e67f90276676191a7682d2b04cfc94ac53f4244afc06ec0a6abbdeb1e930efb13a1afc42b10d73

    • SSDEEP

      6144:mdL9NgvQN0sIZ9GZpGkEwHJRR7J24hANL4tTTm0FJGu8:mdvizZ9cpGkrHJR1c4GL8TTm0Ll8

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks