Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe

  • Size

    323KB

  • Sample

    230821-xj8wjafd37

  • MD5

    0bccbc86eb22db09557407f84a1b56d7

  • SHA1

    dd1a6c49e7efb9d21556678094e87bcf62f8418a

  • SHA256

    4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a

  • SHA512

    b677e91cc8bdd36476c98034b8dbd3729527fc9675493faf3ff584bd1cbae52a8778887f38c8b3a0a743a3e16c9760d136b01b36bf34157c03e91a41b919baec

  • SSDEEP

    6144:ZTAAW52q+r5u/At4F6WpWJYI5Y5kAblPYbehGN1au:ZRqxk4Fw5ukAblPYbehU

Malware Config

Targets

    • Target

      4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe

    • Size

      323KB

    • MD5

      0bccbc86eb22db09557407f84a1b56d7

    • SHA1

      dd1a6c49e7efb9d21556678094e87bcf62f8418a

    • SHA256

      4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a

    • SHA512

      b677e91cc8bdd36476c98034b8dbd3729527fc9675493faf3ff584bd1cbae52a8778887f38c8b3a0a743a3e16c9760d136b01b36bf34157c03e91a41b919baec

    • SSDEEP

      6144:ZTAAW52q+r5u/At4F6WpWJYI5Y5kAblPYbehGN1au:ZRqxk4Fw5ukAblPYbehU

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v15

Tasks