Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507.bin
-
Size
1.7MB
-
Sample
230506-2g62dach97
-
MD5
c44937f9a9a1dd00e1a9e71315cb668d
-
SHA1
64c27b452325c47d95078b26ff18cc6c0a23541a
-
SHA256
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507
-
SHA512
c41ec1da4f84cccd1454658efd2d31503d53baf9f90abfadb49b484ba840c2396f600120a1e36c746735c1dcf06235bae368978a4db1ed5f34f33a0459dcfcbf
-
SSDEEP
49152:a4gu4265mdWpCE9uktqnYGNanFYLd0bBsAORlwCg4:wrV5mdcCEZtqnYGNanYebGNRl7
Static task
static1
Behavioral task
behavioral1
Sample
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507.exe
Resource
win10v2004-20230221-en
Malware Config
Extracted
redline
most
185.161.248.73:4164
-
auth_value
7da4dfa153f2919e617aa016f7c36008
Targets
-
-
Target
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507.bin
-
Size
1.7MB
-
MD5
c44937f9a9a1dd00e1a9e71315cb668d
-
SHA1
64c27b452325c47d95078b26ff18cc6c0a23541a
-
SHA256
0123685221e8f4bbe288ada7dd1d6c960a94af37ed7e4f55bcff7f81aa4a3507
-
SHA512
c41ec1da4f84cccd1454658efd2d31503d53baf9f90abfadb49b484ba840c2396f600120a1e36c746735c1dcf06235bae368978a4db1ed5f34f33a0459dcfcbf
-
SSDEEP
49152:a4gu4265mdWpCE9uktqnYGNanFYLd0bBsAORlwCg4:wrV5mdcCEZtqnYGNanYebGNRl7
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-