Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

3ad366b1f9...6b.exe

windows7-x64

10

3ad366b1f9...6b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3ad366b1f91d3b4837b5df220612a06b.exe

  • Size

    991KB

  • Sample

    230711-x2m2saae97

  • MD5

    3ad366b1f91d3b4837b5df220612a06b

  • SHA1

    9db9c2b3bcaf91490dbadcd92e58d7ea9126a636

  • SHA256

    6a4e611067897fb1deef968b156672bfb0bb4098c9bcc65d1fbbd7cf24a656ad

  • SHA512

    dda9a7c28305f11c1cde6eb7dfa61c44ed64200a7d4ce0f503899f1b0607bd3b0fca256b3231430d926c84ba10101ef7af8627e0e69299ef400831ad74ebbe32

  • SSDEEP

    12288:LfWyu528tXTCceAzbGmCzMPFHp9k1cKzb5yPcVfGLxBgQW57PNiLsNuXJHsGX0o3:E629k6KzbgPWfGLxB6576lEoI/xQX3R7

Score
10/10
redlineinfostealerspyware

Malware Config

Targets

    • Target

      3ad366b1f91d3b4837b5df220612a06b.exe

    • Size

      991KB

    • MD5

      3ad366b1f91d3b4837b5df220612a06b

    • SHA1

      9db9c2b3bcaf91490dbadcd92e58d7ea9126a636

    • SHA256

      6a4e611067897fb1deef968b156672bfb0bb4098c9bcc65d1fbbd7cf24a656ad

    • SHA512

      dda9a7c28305f11c1cde6eb7dfa61c44ed64200a7d4ce0f503899f1b0607bd3b0fca256b3231430d926c84ba10101ef7af8627e0e69299ef400831ad74ebbe32

    • SSDEEP

      12288:LfWyu528tXTCceAzbGmCzMPFHp9k1cKzb5yPcVfGLxBgQW57PNiLsNuXJHsGX0o3:E629k6KzbgPWfGLxB6576lEoI/xQX3R7

    Score
    10/10
    redlineinfostealerspyware

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks