Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b2bede1a82b9bb07606b8b177ef40abeb2c4d2c72264aead0fd66d6360c558da
-
Size
1.0MB
-
Sample
230522-eev5rsgg4t
-
MD5
d81c9d46b46e296dc3588a5dab2b0b6a
-
SHA1
90c289b1dd93d84b40b944dc140533997e40c17e
-
SHA256
b2bede1a82b9bb07606b8b177ef40abeb2c4d2c72264aead0fd66d6360c558da
-
SHA512
e35d3d9e62e3155ffeef411e1be2e64f8e8bb98e4f9406b44935fc78875ab780578888f5ff30cc284a6e565b59708e5a91e5dfe8c23c443ad5492d19f263ea3f
-
SSDEEP
24576:7y1052CbEaOWloqv/5W71SXFTgnCjVnQIl/61K9uuasVK16u+XB0:u1052QEaOFqpmSFsnChP8K9X/VKr
Static task
static1
Behavioral task
behavioral1
Sample
b2bede1a82b9bb07606b8b177ef40abeb2c4d2c72264aead0fd66d6360c558da.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
redline
diza
185.161.248.37:4138
-
auth_value
0d09b419c8bc967f91c68be4a17e92ee
Targets
-
-
Target
b2bede1a82b9bb07606b8b177ef40abeb2c4d2c72264aead0fd66d6360c558da
-
Size
1.0MB
-
MD5
d81c9d46b46e296dc3588a5dab2b0b6a
-
SHA1
90c289b1dd93d84b40b944dc140533997e40c17e
-
SHA256
b2bede1a82b9bb07606b8b177ef40abeb2c4d2c72264aead0fd66d6360c558da
-
SHA512
e35d3d9e62e3155ffeef411e1be2e64f8e8bb98e4f9406b44935fc78875ab780578888f5ff30cc284a6e565b59708e5a91e5dfe8c23c443ad5492d19f263ea3f
-
SSDEEP
24576:7y1052CbEaOWloqv/5W71SXFTgnCjVnQIl/61K9uuasVK16u+XB0:u1052QEaOFqpmSFsnChP8K9X/VKr
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Adds Run key to start application
-