Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0b8cd1fde48304d57568381fe03db7a143822159043a2facd2d31ec405b1326d

  • Size

    479KB

  • Sample

    230506-y7hjxsdh3s

  • MD5

    74fc1501b8b739a6a86dc77599ab2ebd

  • SHA1

    fe123f17a1229326e2b096dd82fc773a8d120155

  • SHA256

    0b8cd1fde48304d57568381fe03db7a143822159043a2facd2d31ec405b1326d

  • SHA512

    bcee2d8c08dca2f5fdf92a10a8f4f09093a488df9294ebed4a56dd20e77b065e3c528148fd7bb64f429c1e38e51e06c79990ddaa771700490ede764fddc5eec3

  • SSDEEP

    12288:5MrTy90hOFEENQZuTO3DwCdfm39YWl03S:eyIGuZuIDwh3pkS

Malware Config

Targets

    • Target

      0b8cd1fde48304d57568381fe03db7a143822159043a2facd2d31ec405b1326d

    • Size

      479KB

    • MD5

      74fc1501b8b739a6a86dc77599ab2ebd

    • SHA1

      fe123f17a1229326e2b096dd82fc773a8d120155

    • SHA256

      0b8cd1fde48304d57568381fe03db7a143822159043a2facd2d31ec405b1326d

    • SHA512

      bcee2d8c08dca2f5fdf92a10a8f4f09093a488df9294ebed4a56dd20e77b065e3c528148fd7bb64f429c1e38e51e06c79990ddaa771700490ede764fddc5eec3

    • SSDEEP

      12288:5MrTy90hOFEENQZuTO3DwCdfm39YWl03S:eyIGuZuIDwh3pkS

    • Detects Redline Stealer samples

      This rule detects the presence of Redline Stealer samples based on their unique strings.

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks