Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

1a90749990...1a.exe

windows7-x64

10

1a90749990...1a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a90749990cd53ca3fced5acfaeefb1a.exe

  • Size

    5.3MB

  • Sample

    230215-sy682acc6s

  • MD5

    1a90749990cd53ca3fced5acfaeefb1a

  • SHA1

    ae7c12d6de1dc97973d0c23eec9f20ba6d04ec84

  • SHA256

    923ee449cd1680cb74fd41c785688e0974c6912da0ce37e7decd79b7af544d79

  • SHA512

    f8c5a7e8de54add19fc69a16cb799b4adb7fa6a40787224fd51d41d9bf79250902af0d2e95e9abde9d5eee3c261ba9dfe110ea4b43848e442cfe4cd1bfddffbb

  • SSDEEP

    12288:KhefaqG4yPa3Pj67yz8t2+1ZpyN2uVA4yOQ6jEu06Fy2Mxzo3:0eSqG4yPafmN9yNBqT364u06F0xM

Score
10/10
redline03.02.23infostealer

Malware Config

Extracted

Family

redline

Botnet

03.02.23

C2

188.127.227.25:6714

Attributes
  • auth_value

    2cf638fe716dc2686fde58759ab8a963

Targets

    • Target

      1a90749990cd53ca3fced5acfaeefb1a.exe

    • Size

      5.3MB

    • MD5

      1a90749990cd53ca3fced5acfaeefb1a

    • SHA1

      ae7c12d6de1dc97973d0c23eec9f20ba6d04ec84

    • SHA256

      923ee449cd1680cb74fd41c785688e0974c6912da0ce37e7decd79b7af544d79

    • SHA512

      f8c5a7e8de54add19fc69a16cb799b4adb7fa6a40787224fd51d41d9bf79250902af0d2e95e9abde9d5eee3c261ba9dfe110ea4b43848e442cfe4cd1bfddffbb

    • SSDEEP

      12288:KhefaqG4yPa3Pj67yz8t2+1ZpyN2uVA4yOQ6jEu06Fy2Mxzo3:0eSqG4yPafmN9yNBqT364u06F0xM

    Score
    10/10
    redline03.02.23infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks