Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file.exe

  • Size

    369KB

  • Sample

    230309-xd26sshf96

  • MD5

    d6a3b9620076a1880f59127002476cbd

  • SHA1

    edcc322fe8c34ac298343f4f7da07b4bd2154b60

  • SHA256

    3ea1cad9ff2825d2d8197acccab32ee892fa93bd0376af1570e579a93c5c3bdd

  • SHA512

    36a7cf6386df982609a943a629c2da23a1e4e9ca0d681dec3948817334093e8bc46159c7a6bdbc2800f882fee6ff0ee535eefc01d5318b03175261641a8759f9

  • SSDEEP

    3072:2HYG6vL9m4qhYKo6GZtl6CfDFpvsUjl2EJvp0SPtxfWCpLy0zWL/tirEpyvlcMcZ:FL5SYxZDF1sw/xR+CNy1Ttt6JmqWV

Malware Config

Targets

    • Target

      file.exe

    • Size

      369KB

    • MD5

      d6a3b9620076a1880f59127002476cbd

    • SHA1

      edcc322fe8c34ac298343f4f7da07b4bd2154b60

    • SHA256

      3ea1cad9ff2825d2d8197acccab32ee892fa93bd0376af1570e579a93c5c3bdd

    • SHA512

      36a7cf6386df982609a943a629c2da23a1e4e9ca0d681dec3948817334093e8bc46159c7a6bdbc2800f882fee6ff0ee535eefc01d5318b03175261641a8759f9

    • SSDEEP

      3072:2HYG6vL9m4qhYKo6GZtl6CfDFpvsUjl2EJvp0SPtxfWCpLy0zWL/tirEpyvlcMcZ:FL5SYxZDF1sw/xR+CNy1Ttt6JmqWV

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks