Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

08575099.exe

windows7-x64

10

08575099.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08575099.exe

  • Size

    926KB

  • Sample

    230603-yggvpshh47

  • MD5

    a1ed05e1152357a287ad4c4b4ddc300e

  • SHA1

    e9a0fb950bbe24c907cfcbf4183654592351ca4a

  • SHA256

    f37fed756590b0b03fb03dc3802b589cc5751346914048faab47b003bae832bb

  • SHA512

    a090022d23a6c0e9b65e87a9a09c52729b690f95ccb476a847377a6538a8380fd2e8853e2bcd914464fd829394dc52cd74ae3916a8a7863563723852c4d1d438

  • SSDEEP

    12288:Sm8VMj5EcETVXfz0kSn69pjVvMEeCxeCadKeHuXq97HvBjTjCdxBT4ZbCAAb7BhT:SxKcSup5UrUF3

Score
10/10
redline1infostealer

Malware Config

Extracted

Family

redline

Botnet

1

C2

185.215.113.37:31712

Attributes
  • auth_value

    1aa402727eb24d99bfd960d3d786f55d

Targets

    • Target

      08575099.exe

    • Size

      926KB

    • MD5

      a1ed05e1152357a287ad4c4b4ddc300e

    • SHA1

      e9a0fb950bbe24c907cfcbf4183654592351ca4a

    • SHA256

      f37fed756590b0b03fb03dc3802b589cc5751346914048faab47b003bae832bb

    • SHA512

      a090022d23a6c0e9b65e87a9a09c52729b690f95ccb476a847377a6538a8380fd2e8853e2bcd914464fd829394dc52cd74ae3916a8a7863563723852c4d1d438

    • SSDEEP

      12288:Sm8VMj5EcETVXfz0kSn69pjVvMEeCxeCadKeHuXq97HvBjTjCdxBT4ZbCAAb7BhT:SxKcSup5UrUF3

    Score
    10/10
    redline1infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks