Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17cfd32abcfb8bf7f0194781f01e1f7ae5959a80f5cebedc9f49f6780bcd4c5f

  • Size

    313KB

  • Sample

    230303-vcfv3aaa5w

  • MD5

    31f70c6466da3b3b8c83edf710705c14

  • SHA1

    7a60a310285c7b7e4e00740c117d5ad0fc7573dd

  • SHA256

    17cfd32abcfb8bf7f0194781f01e1f7ae5959a80f5cebedc9f49f6780bcd4c5f

  • SHA512

    307ed82250755f8e62fc3c118a1fdde30312a7906c95bc492c206c73a052b919e9c3492b1d1be18450a1975d09ebe91a8037ef9b01b4aabe809997225854f8eb

  • SSDEEP

    6144:zdoDU7yEqGj13fno21RyPBVsIN2TnQkpQdzZIj:zdoIuVGj1Po2iPfaQQQdzSj

Score
10/10
redlinediscoveryinfostealerspywarestealer

Malware Config

Targets

    • Target

      17cfd32abcfb8bf7f0194781f01e1f7ae5959a80f5cebedc9f49f6780bcd4c5f

    • Size

      313KB

    • MD5

      31f70c6466da3b3b8c83edf710705c14

    • SHA1

      7a60a310285c7b7e4e00740c117d5ad0fc7573dd

    • SHA256

      17cfd32abcfb8bf7f0194781f01e1f7ae5959a80f5cebedc9f49f6780bcd4c5f

    • SHA512

      307ed82250755f8e62fc3c118a1fdde30312a7906c95bc492c206c73a052b919e9c3492b1d1be18450a1975d09ebe91a8037ef9b01b4aabe809997225854f8eb

    • SSDEEP

      6144:zdoDU7yEqGj13fno21RyPBVsIN2TnQkpQdzZIj:zdoIuVGj1Po2iPfaQQQdzSj

    Score
    10/10
    redlinediscoveryinfostealerspywarestealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks