Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0x0006000000016ba4-30.dat

  • Size

    174KB

  • Sample

    230910-qylafshd9w

  • MD5

    2514aea1eb1e7017ad6e38ae7996b786

  • SHA1

    182d6a3c3cae0e5954b0c23e39577846fdd0983b

  • SHA256

    5fb7ac419931189b181a54705418ac2329ba195e4b2f20ef1085650cfe858064

  • SHA512

    90c62064c4a990bf5682abaf30017e007a39b12da814de10e5bad66103d176df5fcf93a53fefe68140a37576e92ff876d4c7fb2887c8735e3d12f6d1c19cde42

  • SSDEEP

    3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

Malware Config

Extracted

Family

redline

Botnet

virad

C2

77.91.124.82:19071

Attributes
  • auth_value

    434dd63619ca8bbf10125913fb40ca28

Targets

    • Target

      0x0006000000016ba4-30.dat

    • Size

      174KB

    • MD5

      2514aea1eb1e7017ad6e38ae7996b786

    • SHA1

      182d6a3c3cae0e5954b0c23e39577846fdd0983b

    • SHA256

      5fb7ac419931189b181a54705418ac2329ba195e4b2f20ef1085650cfe858064

    • SHA512

      90c62064c4a990bf5682abaf30017e007a39b12da814de10e5bad66103d176df5fcf93a53fefe68140a37576e92ff876d4c7fb2887c8735e3d12f6d1c19cde42

    • SSDEEP

      3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks