Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0x000a00000001e0cf-54.dat

  • Size

    174KB

  • Sample

    230910-k4tk5afh8w

  • MD5

    5ef335d8ec5c9b50adbc35a0895c19f0

  • SHA1

    4c574dc5d646c42c7c507fdfe8c96ac42d653e90

  • SHA256

    927dffce1baf35a6af33e8f645de335f9f53b2707b563438603cb7dd16c29844

  • SHA512

    492adfdd9fe7c39ecc7dafb145b47f72915294270f4ac0dfedefecac67d55daec9c4f7b582539cf275e1ff1d6867aac9aa00bebf6845a3771bdf6c0e0cbff9b0

  • SSDEEP

    3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

Malware Config

Extracted

Family

redline

Botnet

virad

C2

77.91.124.82:19071

Attributes
  • auth_value

    434dd63619ca8bbf10125913fb40ca28

Targets

    • Target

      0x000a00000001e0cf-54.dat

    • Size

      174KB

    • MD5

      5ef335d8ec5c9b50adbc35a0895c19f0

    • SHA1

      4c574dc5d646c42c7c507fdfe8c96ac42d653e90

    • SHA256

      927dffce1baf35a6af33e8f645de335f9f53b2707b563438603cb7dd16c29844

    • SHA512

      492adfdd9fe7c39ecc7dafb145b47f72915294270f4ac0dfedefecac67d55daec9c4f7b582539cf275e1ff1d6867aac9aa00bebf6845a3771bdf6c0e0cbff9b0

    • SSDEEP

      3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks