Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537

  • Size

    729KB

  • Sample

    230714-c26hxacg6w

  • MD5

    6518213f66fc45c441587334bfe9b8e5

  • SHA1

    53d80324bbcfc16ef02a923b7e51c547c3c8c506

  • SHA256

    c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537

  • SHA512

    9a891413fcc705ed29472afb0a86d385472b96d0a7a2dbc20a21edc5d517e96e00c6af6d7de9fd370669522b5d61ec7178d2f82b9eb4b24fda232040c9f9fdd7

  • SSDEEP

    12288:Ko2KXf2D8kh1IQK/RxowECWvPNoGAwdfGZ+5iICSVtg0wBW3iFt4ONq30/4St2NV:KWP2D8khe//RxowECWvPNoGAwdfGZYBM

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Targets

    • Target

      c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537

    • Size

      729KB

    • MD5

      6518213f66fc45c441587334bfe9b8e5

    • SHA1

      53d80324bbcfc16ef02a923b7e51c547c3c8c506

    • SHA256

      c0a2c54ebc72556be4375018c7fa7c2514543b59cc2ac0b346954942f062d537

    • SHA512

      9a891413fcc705ed29472afb0a86d385472b96d0a7a2dbc20a21edc5d517e96e00c6af6d7de9fd370669522b5d61ec7178d2f82b9eb4b24fda232040c9f9fdd7

    • SSDEEP

      12288:Ko2KXf2D8kh1IQK/RxowECWvPNoGAwdfGZ+5iICSVtg0wBW3iFt4ONq30/4St2NV:KWP2D8khe//RxowECWvPNoGAwdfGZYBM

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks