Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5dfdc0e43958561ef231878043f237799cb8c94cc6fd8a033c3b7f1a8836cedf

  • Size

    408KB

  • Sample

    230307-ee6lhagg89

  • MD5

    f958d4ee59c0f45db1517c44f8091842

  • SHA1

    1592f5cfa90defa17d154974b78d8bf75f384d7c

  • SHA256

    5dfdc0e43958561ef231878043f237799cb8c94cc6fd8a033c3b7f1a8836cedf

  • SHA512

    abcff14debad994f46f88bd5eb8a8ac23dce7ff6cc29d022ce23d53737d8ccbf3360c11815a398ccd8276ce8ee8af1cd93a3ee0e1c2dcda977e029732165f1ce

  • SSDEEP

    6144:P0jmLgjB2OT3JVPN22FJwXLjvJDaV1eLin6ZK4wUHU:Plcj8eYv6+uoH

Malware Config

Targets

    • Target

      5dfdc0e43958561ef231878043f237799cb8c94cc6fd8a033c3b7f1a8836cedf

    • Size

      408KB

    • MD5

      f958d4ee59c0f45db1517c44f8091842

    • SHA1

      1592f5cfa90defa17d154974b78d8bf75f384d7c

    • SHA256

      5dfdc0e43958561ef231878043f237799cb8c94cc6fd8a033c3b7f1a8836cedf

    • SHA512

      abcff14debad994f46f88bd5eb8a8ac23dce7ff6cc29d022ce23d53737d8ccbf3360c11815a398ccd8276ce8ee8af1cd93a3ee0e1c2dcda977e029732165f1ce

    • SSDEEP

      6144:P0jmLgjB2OT3JVPN22FJwXLjvJDaV1eLin6ZK4wUHU:Plcj8eYv6+uoH

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks