Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8fdc64fd48b359edb3aa94fff55a5321ba0fab1f7f7d858a3b6405042300a19b

  • Size

    293KB

  • Sample

    230312-1p5b3sfe67

  • MD5

    285a03354363063f1f35940eadb45800

  • SHA1

    001f679b27e73f36cbfe7fc305795e14f94091ba

  • SHA256

    8fdc64fd48b359edb3aa94fff55a5321ba0fab1f7f7d858a3b6405042300a19b

  • SHA512

    7cf253439c2ccbd4e8d0a21b23668868683f3f41e6e61403ab603209e0b5d362c666bb63a728bf1de7b60405a92d5b0e65112cafd70e60e4e979247017d49f69

  • SSDEEP

    6144:2P1NLo2q7hnWfdlJ1u/cNFacQkvlaPEKPLGZuUnMWZq:oNLD/dlJokNFar7PPLLUMmq

Malware Config

Targets

    • Target

      8fdc64fd48b359edb3aa94fff55a5321ba0fab1f7f7d858a3b6405042300a19b

    • Size

      293KB

    • MD5

      285a03354363063f1f35940eadb45800

    • SHA1

      001f679b27e73f36cbfe7fc305795e14f94091ba

    • SHA256

      8fdc64fd48b359edb3aa94fff55a5321ba0fab1f7f7d858a3b6405042300a19b

    • SHA512

      7cf253439c2ccbd4e8d0a21b23668868683f3f41e6e61403ab603209e0b5d362c666bb63a728bf1de7b60405a92d5b0e65112cafd70e60e4e979247017d49f69

    • SSDEEP

      6144:2P1NLo2q7hnWfdlJ1u/cNFacQkvlaPEKPLGZuUnMWZq:oNLD/dlJokNFar7PPLLUMmq

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks