Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe
-
Size
323KB
-
Sample
230821-xj8wjafd37
-
MD5
0bccbc86eb22db09557407f84a1b56d7
-
SHA1
dd1a6c49e7efb9d21556678094e87bcf62f8418a
-
SHA256
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a
-
SHA512
b677e91cc8bdd36476c98034b8dbd3729527fc9675493faf3ff584bd1cbae52a8778887f38c8b3a0a743a3e16c9760d136b01b36bf34157c03e91a41b919baec
-
SSDEEP
6144:ZTAAW52q+r5u/At4F6WpWJYI5Y5kAblPYbehGN1au:ZRqxk4Fw5ukAblPYbehU
Behavioral task
behavioral1
Sample
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe
Resource
win10v2004-20230703-en
Malware Config
Targets
-
-
Target
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a_JC.exe
-
Size
323KB
-
MD5
0bccbc86eb22db09557407f84a1b56d7
-
SHA1
dd1a6c49e7efb9d21556678094e87bcf62f8418a
-
SHA256
4d81fe33c5ab8acd5b7af51e1f3b853d6f071cc1bd7571b822dc9f4a47e4b67a
-
SHA512
b677e91cc8bdd36476c98034b8dbd3729527fc9675493faf3ff584bd1cbae52a8778887f38c8b3a0a743a3e16c9760d136b01b36bf34157c03e91a41b919baec
-
SSDEEP
6144:ZTAAW52q+r5u/At4F6WpWJYI5Y5kAblPYbehGN1au:ZRqxk4Fw5ukAblPYbehU
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-