Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8d72c2cb85ac1d506403594695a95c6920722b637d02e351f742ddd73dfa2e41_JC.exe

  • Size

    341KB

  • Sample

    230826-sbh8padb6y

  • MD5

    8dbfd9f45c20a8827b0285ede7fa3701

  • SHA1

    91c3c57359203bebe54a128a9640b0a13543a739

  • SHA256

    8d72c2cb85ac1d506403594695a95c6920722b637d02e351f742ddd73dfa2e41

  • SHA512

    9ecc6b81bd099ba04c4c8649f94798dfa27f48e6273003305e7eebf766edf2a98ddd664399e998b4b599268217cc3368ea9f56df3138e837da63bd2d386dae55

  • SSDEEP

    6144:6R5HwTqTWAsB47OjqptMyd/4XbSN1azTi:SGqz44r/4Xbk

Malware Config

Targets

    • Target

      8d72c2cb85ac1d506403594695a95c6920722b637d02e351f742ddd73dfa2e41_JC.exe

    • Size

      341KB

    • MD5

      8dbfd9f45c20a8827b0285ede7fa3701

    • SHA1

      91c3c57359203bebe54a128a9640b0a13543a739

    • SHA256

      8d72c2cb85ac1d506403594695a95c6920722b637d02e351f742ddd73dfa2e41

    • SHA512

      9ecc6b81bd099ba04c4c8649f94798dfa27f48e6273003305e7eebf766edf2a98ddd664399e998b4b599268217cc3368ea9f56df3138e837da63bd2d386dae55

    • SSDEEP

      6144:6R5HwTqTWAsB47OjqptMyd/4XbSN1azTi:SGqz44r/4Xbk

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v15

Tasks