Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7.bin
-
Size
707KB
-
Sample
230506-zn2dcsdd73
-
MD5
982a5fdc6779e4491d9a42aced94632d
-
SHA1
e4b5f1b040df9232e9a1210ba19df9684b4af431
-
SHA256
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7
-
SHA512
dd5876ab60345c2654011c15b5b3956f4c2cbe83bbd0bcce7ee75d978d1ab237bd0a05e8c34907e94b88c52211b4cb75260a8e5577c797c5d5793f42939e0be4
-
SSDEEP
12288:Jy90R4cYuZUSZinTLlcNfgXxGk0STEn3OmYOIDA6kk/Ee4rY:JykvZUSZinTxcNfghGDV3CHYkEE
Static task
static1
Behavioral task
behavioral1
Sample
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7.bin
-
Size
707KB
-
MD5
982a5fdc6779e4491d9a42aced94632d
-
SHA1
e4b5f1b040df9232e9a1210ba19df9684b4af431
-
SHA256
1fa21bad70fb9eba5f1dd16b39fae60326de473cec6956232984b3ad675f32c7
-
SHA512
dd5876ab60345c2654011c15b5b3956f4c2cbe83bbd0bcce7ee75d978d1ab237bd0a05e8c34907e94b88c52211b4cb75260a8e5577c797c5d5793f42939e0be4
-
SSDEEP
12288:Jy90R4cYuZUSZinTLlcNfgXxGk0STEn3OmYOIDA6kk/Ee4rY:JykvZUSZinTxcNfghGDV3CHYkEE
-
Detects Redline Stealer samples
This rule detects the presence of Redline Stealer samples based on their unique strings.
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-