Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6023428832c4436e1f7479a5f18f46153df56dbb73d1cff3e1ad0f5eb19472dd

  • Size

    308KB

  • Sample

    230716-whze2ahb41

  • MD5

    f352acc1c8bec2b6be3318103ae75f52

  • SHA1

    12cd07b4a9ee30f0140e907a4d7c4e3e4fceca52

  • SHA256

    6023428832c4436e1f7479a5f18f46153df56dbb73d1cff3e1ad0f5eb19472dd

  • SHA512

    f24d89520acda5a3c6890790fca90fca4b3dc9cfd63bc2e62d0b00bf0f9e20919ac5a8a5a26a4af1afe4398658729d3e1935b182a5b424789177c09cd44dc868

  • SSDEEP

    3072:aTVVQxhzzLAjiRLpwelYplD7rlxmbLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:3KjiRVwzLErsBilHn27RV

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Targets

    • Target

      6023428832c4436e1f7479a5f18f46153df56dbb73d1cff3e1ad0f5eb19472dd

    • Size

      308KB

    • MD5

      f352acc1c8bec2b6be3318103ae75f52

    • SHA1

      12cd07b4a9ee30f0140e907a4d7c4e3e4fceca52

    • SHA256

      6023428832c4436e1f7479a5f18f46153df56dbb73d1cff3e1ad0f5eb19472dd

    • SHA512

      f24d89520acda5a3c6890790fca90fca4b3dc9cfd63bc2e62d0b00bf0f9e20919ac5a8a5a26a4af1afe4398658729d3e1935b182a5b424789177c09cd44dc868

    • SSDEEP

      3072:aTVVQxhzzLAjiRLpwelYplD7rlxmbLX049hWa/dUBilHMOnwXQPq8Gxzn729897X:3KjiRVwzLErsBilHn27RV

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks