Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6a98aeb5fab613ae0665adb7242bbdcfd1ffab96c6f8b01ce8febb0cd637cd3a
-
Size
352KB
-
Sample
230324-m8ph3sfh9x
-
MD5
02ca33b07b4a7104d83e568d0f503a05
-
SHA1
801eae18dc2ca715c7a94356077ddc2b11ffa74f
-
SHA256
6a98aeb5fab613ae0665adb7242bbdcfd1ffab96c6f8b01ce8febb0cd637cd3a
-
SHA512
1986dd18042e2fb7cd3b8b1ccb6142d438e9139aa4d0ce91340ad3c070ae8868509f74b2ccdeeff719cbc36961fd0af723c955d65ccdc10d96392e398bec989e
-
SSDEEP
3072:YpgRzjmT9G9d8R0Tjng1uD6qtREDRYnMjbKsNvREenWsUcf8Fpkv2dQviEilz27z:VjUuPltREYMXpEGUcf8f9l8CkJEIj
Static task
static1
Malware Config
Extracted
redline
@Germany
185.11.61.125:22344
-
auth_value
9d15d78194367a949e54a07d6ce02c62
Targets
-
-
Target
6a98aeb5fab613ae0665adb7242bbdcfd1ffab96c6f8b01ce8febb0cd637cd3a
-
Size
352KB
-
MD5
02ca33b07b4a7104d83e568d0f503a05
-
SHA1
801eae18dc2ca715c7a94356077ddc2b11ffa74f
-
SHA256
6a98aeb5fab613ae0665adb7242bbdcfd1ffab96c6f8b01ce8febb0cd637cd3a
-
SHA512
1986dd18042e2fb7cd3b8b1ccb6142d438e9139aa4d0ce91340ad3c070ae8868509f74b2ccdeeff719cbc36961fd0af723c955d65ccdc10d96392e398bec989e
-
SSDEEP
3072:YpgRzjmT9G9d8R0Tjng1uD6qtREDRYnMjbKsNvREenWsUcf8Fpkv2dQviEilz27z:VjUuPltREYMXpEGUcf8f9l8CkJEIj
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-