Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8dcc98267696d7d07f5ff1edb4f8b07c39fbb67835e9bdd535d120bebadcc955

  • Size

    492KB

  • Sample

    230715-cpdmcshg3y

  • MD5

    ce5537e6b67da961c33915d45eac591c

  • SHA1

    b4611ddcd56ef321431fc027ead5d8dc5191b834

  • SHA256

    8dcc98267696d7d07f5ff1edb4f8b07c39fbb67835e9bdd535d120bebadcc955

  • SHA512

    d972a4de1eb97a85fa2bc5c836b835f831465149d2d976d90d1af573acf32bdb1c9714a1d5696e86a6b1f3dfe4764d3a5b0c375565c6a7638ed32a5a6345b4e2

  • SSDEEP

    12288:p8MMeeaQCiqhgPCzFNB35lmK4lhXCrAFcmZAbytA+C4BY7q10Lj:p1emiqhgAduK4l0rWc8C+Yu

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Targets

    • Target

      8dcc98267696d7d07f5ff1edb4f8b07c39fbb67835e9bdd535d120bebadcc955

    • Size

      492KB

    • MD5

      ce5537e6b67da961c33915d45eac591c

    • SHA1

      b4611ddcd56ef321431fc027ead5d8dc5191b834

    • SHA256

      8dcc98267696d7d07f5ff1edb4f8b07c39fbb67835e9bdd535d120bebadcc955

    • SHA512

      d972a4de1eb97a85fa2bc5c836b835f831465149d2d976d90d1af573acf32bdb1c9714a1d5696e86a6b1f3dfe4764d3a5b0c375565c6a7638ed32a5a6345b4e2

    • SSDEEP

      12288:p8MMeeaQCiqhgPCzFNB35lmK4lhXCrAFcmZAbytA+C4BY7q10Lj:p1emiqhgAduK4l0rWc8C+Yu

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks