Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b66cb0f30b497c170c2a1604135b0c68f611a0c0d04b78fe54ebd9b38688e08e

  • Size

    493KB

  • Sample

    230716-h5986acg94

  • MD5

    a5e019a081b1a81f5229b115e80a1093

  • SHA1

    6c237608e34e638d52b7370b3f6e84effc12e4a4

  • SHA256

    b66cb0f30b497c170c2a1604135b0c68f611a0c0d04b78fe54ebd9b38688e08e

  • SHA512

    89170effa3a283180f2dfdceb32dc2700883b753cf43f9663ce9c5d30e8afab1cf00fa2b0d5f501aa79b4ee6de4a773cd2e2fd67c964f759a15194a2276b8a01

  • SSDEEP

    6144:xJCtLfFaxmFGvMXmjTRwlDvDFRfePkgR1gMwLgkshK4lCLDOASOwvGch1YVa:xJCt5ComtSvDPukfLgDK4lCL6zvGmi

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Targets

    • Target

      b66cb0f30b497c170c2a1604135b0c68f611a0c0d04b78fe54ebd9b38688e08e

    • Size

      493KB

    • MD5

      a5e019a081b1a81f5229b115e80a1093

    • SHA1

      6c237608e34e638d52b7370b3f6e84effc12e4a4

    • SHA256

      b66cb0f30b497c170c2a1604135b0c68f611a0c0d04b78fe54ebd9b38688e08e

    • SHA512

      89170effa3a283180f2dfdceb32dc2700883b753cf43f9663ce9c5d30e8afab1cf00fa2b0d5f501aa79b4ee6de4a773cd2e2fd67c964f759a15194a2276b8a01

    • SSDEEP

      6144:xJCtLfFaxmFGvMXmjTRwlDvDFRfePkgR1gMwLgkshK4lCLDOASOwvGch1YVa:xJCt5ComtSvDPukfLgDK4lCL6zvGmi

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks