Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    09b180790531cc1de02f371a4fa34a9f.bin

  • Size

    203KB

  • Sample

    230716-bgap3acb66

  • MD5

    cf1cddd9b5799d46378772a915a6ea55

  • SHA1

    3433db9710a2825a206f423adb33b95c4e3facb5

  • SHA256

    cb77bb45b39efb4720d5c0e6060d805f67eb457d4c49430beda31d514b3c8f13

  • SHA512

    9e5b8c31ecceea0ed1b128bf0169021fdac9a37f36eb92d87485ddfed34863b5232c23182e8141e29671867494f89b8f93f1252ad60d508fe60b294a42baa24c

  • SSDEEP

    3072:29KaeGLsZ1dUOTgY9B4qt/z6KYLqOmAgQPBPuBWp03tCrHKlEHy2F7x68UlizxdN:l1VT/6qtlBABbK30jO88q5pTlWJ+Dr

Malware Config

Extracted

Family

redline

Botnet

LogsDiller Cloud (Bot: @logsdillabot)

C2

147.135.165.22:17748

Attributes
  • auth_value

    ed000008c0b59caf793b48c8ea9a7233

Targets

    • Target

      6b714efecfe9f33ea5f6d1e9b3ef6f7a6b360e68d0fc4ab27026aa0a9a81ccf0.exe

    • Size

      244KB

    • MD5

      09b180790531cc1de02f371a4fa34a9f

    • SHA1

      46f33ceeb15c8a4ce2a3adf2fb657684b3207d73

    • SHA256

      6b714efecfe9f33ea5f6d1e9b3ef6f7a6b360e68d0fc4ab27026aa0a9a81ccf0

    • SHA512

      2767134fbec312cb21186007097c1fd61b1743f0c449dccf2c2f63057a84ea0eba27455d1124bc5c3fa26005eb9fe826146db7f5f055a19c320927b3762cf97e

    • SSDEEP

      6144:gLoIarwGgdpDqDRrljm0xDkBZuW1hyh0AHVOe7YJ:gjG6waeH0A1OeU

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks