Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5c6f0628f176ed4b48066604aabf404cebb2750943d3e56dd5548a9a5dcb493a

  • Size

    479KB

  • Sample

    230506-11fsvscf5w

  • MD5

    f4cbc0adc6dac9c02101434fe9208dcd

  • SHA1

    651338431eaa421a164ec448e56e694165667355

  • SHA256

    5c6f0628f176ed4b48066604aabf404cebb2750943d3e56dd5548a9a5dcb493a

  • SHA512

    6d6eafbe69e19b995f75eb0f3a412c6adaca8350ca4d8d67075a74cc48a67303be6cb77086c34b2d3da44fdced797784ecd6b9397d9eefca0c27412232e41dc3

  • SSDEEP

    12288:OMrSy90aro2G7B+8FRa0n9DkUvgusoysnwFOhci:Iy16F+8FRaC9kkJ9wFg1

Malware Config

Targets

    • Target

      5c6f0628f176ed4b48066604aabf404cebb2750943d3e56dd5548a9a5dcb493a

    • Size

      479KB

    • MD5

      f4cbc0adc6dac9c02101434fe9208dcd

    • SHA1

      651338431eaa421a164ec448e56e694165667355

    • SHA256

      5c6f0628f176ed4b48066604aabf404cebb2750943d3e56dd5548a9a5dcb493a

    • SHA512

      6d6eafbe69e19b995f75eb0f3a412c6adaca8350ca4d8d67075a74cc48a67303be6cb77086c34b2d3da44fdced797784ecd6b9397d9eefca0c27412232e41dc3

    • SSDEEP

      12288:OMrSy90aro2G7B+8FRa0n9DkUvgusoysnwFOhci:Iy16F+8FRaC9kkJ9wFg1

    • Detects Redline Stealer samples

      This rule detects the presence of Redline Stealer samples based on their unique strings.

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks