Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    i1438284.exe

  • Size

    174KB

  • Sample

    230830-e1rz8shf86

  • MD5

    0c2634ff29c5525bad02edbb2aede7d4

  • SHA1

    cc40d1b02ead352a7b966191eefe022774e1a8fe

  • SHA256

    c9ce8dd2e6bd07820e287b18367966acb55b4e1e36e3fbeed727319c0661d191

  • SHA512

    8f0a748d0e34c5f6b1273274380cdd1517f54387db9fd4aa78d1cf5fade4caddc4996f0180bdfcac2bc7bd6f0bdb4b07810ffc936f9a479401080f03226b39e9

  • SSDEEP

    3072:1hg4vliHjI05aBkbOVCFlAsNN4E0sW+1QlQneUJE8e8hA:1C44jI05aBkF4E0KQlQneUC

Malware Config

Extracted

Family

redline

Botnet

sruta

C2

77.91.124.82:19071

Attributes
  • auth_value

    c556edcd49703319eca74247de20c236

Targets

    • Target

      i1438284.exe

    • Size

      174KB

    • MD5

      0c2634ff29c5525bad02edbb2aede7d4

    • SHA1

      cc40d1b02ead352a7b966191eefe022774e1a8fe

    • SHA256

      c9ce8dd2e6bd07820e287b18367966acb55b4e1e36e3fbeed727319c0661d191

    • SHA512

      8f0a748d0e34c5f6b1273274380cdd1517f54387db9fd4aa78d1cf5fade4caddc4996f0180bdfcac2bc7bd6f0bdb4b07810ffc936f9a479401080f03226b39e9

    • SSDEEP

      3072:1hg4vliHjI05aBkbOVCFlAsNN4E0sW+1QlQneUJE8e8hA:1C44jI05aBkF4E0KQlQneUC

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks