Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4256d0038b85b75bc1235fc87785c413838636a52f6b6b10f4dfa9c6171ccc8b

  • Size

    303KB

  • Sample

    230311-md4phsba81

  • MD5

    3051a60edbd210276a9f9dc75f8f8ea3

  • SHA1

    faa65b56c0b312075f2eed5732250d83b94e1ab3

  • SHA256

    4256d0038b85b75bc1235fc87785c413838636a52f6b6b10f4dfa9c6171ccc8b

  • SHA512

    de1e80352b708fdb0944695b115ef7ed889056b7e1ff31d00d23eed118565a534def71d75aa1582ca25b2c7ef786b0089658accef3b1d30827f33c0a4cfce12c

  • SSDEEP

    6144:kFB9KC3428IOac5DjJ/0fAcK6XeaQLz4G4KeadAW6A2q0fiJGZ6:yHKE42Oa4t/2Ac7Xc4G4LSeA2rD

Malware Config

Targets

    • Target

      4256d0038b85b75bc1235fc87785c413838636a52f6b6b10f4dfa9c6171ccc8b

    • Size

      303KB

    • MD5

      3051a60edbd210276a9f9dc75f8f8ea3

    • SHA1

      faa65b56c0b312075f2eed5732250d83b94e1ab3

    • SHA256

      4256d0038b85b75bc1235fc87785c413838636a52f6b6b10f4dfa9c6171ccc8b

    • SHA512

      de1e80352b708fdb0944695b115ef7ed889056b7e1ff31d00d23eed118565a534def71d75aa1582ca25b2c7ef786b0089658accef3b1d30827f33c0a4cfce12c

    • SSDEEP

      6144:kFB9KC3428IOac5DjJ/0fAcK6XeaQLz4G4KeadAW6A2q0fiJGZ6:yHKE42Oa4t/2Ac7Xc4G4LSeA2rD

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks