Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    26864964585c14526e69c59305b466d5b7ebd9470d5a8e33470ef8b37d1b7727

  • Size

    479KB

  • Sample

    230506-zvgyasgb6s

  • MD5

    0f4968d2050bbc9331fa951525a60178

  • SHA1

    8f4cc098762d7a1695474b794990642bdb097152

  • SHA256

    26864964585c14526e69c59305b466d5b7ebd9470d5a8e33470ef8b37d1b7727

  • SHA512

    1fed6cfe88f8275d21e7703a5f59f5081a718b5b2055f4235b6dad2f101a4f78dc626307d12b087d185451a9fdde3f3ccdb43e03bb773e459f70fe2b265075fc

  • SSDEEP

    12288:GMrCy90MWLI7BWf2Hbgq3t1VpjTlmS++8OatQ6g:4yYctWObXVpjpT8/Q6g

Malware Config

Targets

    • Target

      26864964585c14526e69c59305b466d5b7ebd9470d5a8e33470ef8b37d1b7727

    • Size

      479KB

    • MD5

      0f4968d2050bbc9331fa951525a60178

    • SHA1

      8f4cc098762d7a1695474b794990642bdb097152

    • SHA256

      26864964585c14526e69c59305b466d5b7ebd9470d5a8e33470ef8b37d1b7727

    • SHA512

      1fed6cfe88f8275d21e7703a5f59f5081a718b5b2055f4235b6dad2f101a4f78dc626307d12b087d185451a9fdde3f3ccdb43e03bb773e459f70fe2b265075fc

    • SSDEEP

      12288:GMrCy90MWLI7BWf2Hbgq3t1VpjTlmS++8OatQ6g:4yYctWObXVpjpT8/Q6g

    • Detects Redline Stealer samples

      This rule detects the presence of Redline Stealer samples based on their unique strings.

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks