Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8e84df6b0b6c3886c4af5af95488c43260afacd493cd0dfde02554d01ab9f3c0

  • Size

    308KB

  • Sample

    230717-mhpq6abc63

  • MD5

    b0c9e466447ddcdfea914c87df410c15

  • SHA1

    b36d2e0c00ed2c4e3ccd8e31398bd02f7b126917

  • SHA256

    8e84df6b0b6c3886c4af5af95488c43260afacd493cd0dfde02554d01ab9f3c0

  • SHA512

    489b78a2b8ddbcf11eae9c3a7f8874a4b1d51b1f5714c5d6e0e796cb1eb815744b085600d9b3a52f5cc69315e9649b7394a18c9e72bcd8c985a54b43ae857613

  • SSDEEP

    3072:3mhOl7iYOzzf0jiRa5welYpKGerlENnLX049hWa/dUBilHMOnwXQPq8Gxzn7298p:xBjiRCwz84rsBilHn27RV

Malware Config

Extracted

Family

redline

Botnet

kira

C2

77.91.68.48:19071

Attributes
  • auth_value

    1677a40fd8997eb89377e1681911e9c6

Targets

    • Target

      8e84df6b0b6c3886c4af5af95488c43260afacd493cd0dfde02554d01ab9f3c0

    • Size

      308KB

    • MD5

      b0c9e466447ddcdfea914c87df410c15

    • SHA1

      b36d2e0c00ed2c4e3ccd8e31398bd02f7b126917

    • SHA256

      8e84df6b0b6c3886c4af5af95488c43260afacd493cd0dfde02554d01ab9f3c0

    • SHA512

      489b78a2b8ddbcf11eae9c3a7f8874a4b1d51b1f5714c5d6e0e796cb1eb815744b085600d9b3a52f5cc69315e9649b7394a18c9e72bcd8c985a54b43ae857613

    • SSDEEP

      3072:3mhOl7iYOzzf0jiRa5welYpKGerlENnLX049hWa/dUBilHMOnwXQPq8Gxzn7298p:xBjiRCwz84rsBilHn27RV

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks