Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6

  • Size

    104KB

  • Sample

    230309-stc5dsda88

  • MD5

    26bfa45039ef6f57f026892087c9808c

  • SHA1

    434dbd3f62501bd129e760e7515b908bb6fa3fba

  • SHA256

    d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6

  • SHA512

    8c1c9e79376ab22cf72d6e5440758f4b2fae4d2fc73142f6f19a0084bbd63865dbc839159e4506bc480f621e7726eceff945f2df64b7c72f482df2ae2ba09d88

  • SSDEEP

    3072:xucUJyyCHYC0GDOhfyJO1fxFVh3DDyK6G:xucMVHpf1W

Malware Config

Extracted

Family

redline

Botnet

M_E_G_A_T_R_A_F

C2

103.133.111.182:44839

Attributes
  • auth_value

    76aa0a5a4c4d5d7de9b795c904226d53

Targets

    • Target

      d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6

    • Size

      104KB

    • MD5

      26bfa45039ef6f57f026892087c9808c

    • SHA1

      434dbd3f62501bd129e760e7515b908bb6fa3fba

    • SHA256

      d13a7261a09183ac552eef9c10b889913a4aba2d8acf398df728ba5db5358df6

    • SHA512

      8c1c9e79376ab22cf72d6e5440758f4b2fae4d2fc73142f6f19a0084bbd63865dbc839159e4506bc480f621e7726eceff945f2df64b7c72f482df2ae2ba09d88

    • SSDEEP

      3072:xucUJyyCHYC0GDOhfyJO1fxFVh3DDyK6G:xucMVHpf1W

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks