Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5.bin
-
Size
617KB
-
Sample
230506-199gjadh2x
-
MD5
2fea513bd39c35823bbf8cb0c18246fe
-
SHA1
135391f51feaf516c97e99e721e701c9a93d4878
-
SHA256
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5
-
SHA512
8e6b46389b3a414a28f8798c9becf933d1cbc2a45518fd108cefd119116924b481955bfcdae48302d68b7f6b4ac8ad74bf0d3255bb30f0b4a88270a7eee3d9e0
-
SSDEEP
12288:uy90aNlEm1sNqFrHqDvUcxdYMmW0GZ0bu44yIP8CE:uytlmNq5iUO2MaGZ0bu4jIEd
Static task
static1
Behavioral task
behavioral1
Sample
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5.exe
Resource
win10v2004-20230221-en
Malware Config
Targets
-
-
Target
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5.bin
-
Size
617KB
-
MD5
2fea513bd39c35823bbf8cb0c18246fe
-
SHA1
135391f51feaf516c97e99e721e701c9a93d4878
-
SHA256
6a0ef6a1e2e12e713b2b72d834ba1a21b52546095be7f648f9277c0b4fa730f5
-
SHA512
8e6b46389b3a414a28f8798c9becf933d1cbc2a45518fd108cefd119116924b481955bfcdae48302d68b7f6b4ac8ad74bf0d3255bb30f0b4a88270a7eee3d9e0
-
SSDEEP
12288:uy90aNlEm1sNqFrHqDvUcxdYMmW0GZ0bu44yIP8CE:uytlmNq5iUO2MaGZ0bu4jIEd
-
Detects Redline Stealer samples
This rule detects the presence of Redline Stealer samples based on their unique strings.
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-