Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6a72edbe24651c47f3d911645c81c49c5b6873baf9b54a7522d3094c99598a1e
-
Size
1.4MB
-
Sample
230828-2t2mesbe9v
-
MD5
bc1858bee7632ec6a07f19219e0be4f0
-
SHA1
b8ca224051079d820d912840232afeeeafe99bcb
-
SHA256
6a72edbe24651c47f3d911645c81c49c5b6873baf9b54a7522d3094c99598a1e
-
SHA512
4c51cb24cfaa8ce636367f62890559c8417a7e74ca8cb383df74ca9571df60833d22510a21174cb83100aff4b7f4df823a4b2f79ace666f97457ac74868337a7
-
SSDEEP
24576:2y9VXzwYgeHq6o+3yn9n0y5H4dKWnrGSdBdaUah784Gkyu4RO8ikXkxed/m2T:FzXz79H4+O50ySKWnr1dBd2h784Gkyu4
Static task
static1
Behavioral task
behavioral1
Sample
6a72edbe24651c47f3d911645c81c49c5b6873baf9b54a7522d3094c99598a1e.exe
Resource
win10v2004-20230703-en
Malware Config
Extracted
amadey
3.87
77.91.68.18/nice/index.php
Extracted
redline
stas
77.91.124.82:19071
-
auth_value
db6d96c4eade05afc28c31d9ad73a73c
Targets
-
-
Target
6a72edbe24651c47f3d911645c81c49c5b6873baf9b54a7522d3094c99598a1e
-
Size
1.4MB
-
MD5
bc1858bee7632ec6a07f19219e0be4f0
-
SHA1
b8ca224051079d820d912840232afeeeafe99bcb
-
SHA256
6a72edbe24651c47f3d911645c81c49c5b6873baf9b54a7522d3094c99598a1e
-
SHA512
4c51cb24cfaa8ce636367f62890559c8417a7e74ca8cb383df74ca9571df60833d22510a21174cb83100aff4b7f4df823a4b2f79ace666f97457ac74868337a7
-
SSDEEP
24576:2y9VXzwYgeHq6o+3yn9n0y5H4dKWnrGSdBdaUah784Gkyu4RO8ikXkxed/m2T:FzXz79H4+O50ySKWnr1dBd2h784Gkyu4
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-