Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0x00060000000155ed-28.dat

  • Size

    174KB

  • Sample

    230910-qyspjahd83

  • MD5

    b50d0732da7f6322d7375a60182fe2db

  • SHA1

    834f2bdd90694bb35f559ab6368227dd866ee204

  • SHA256

    59ba53db96caeffcab570d7fc848de3d1fa37be90296ec061f1fa36feafa67f6

  • SHA512

    c4c327b716a5816254c659cea8dcdcddce84d59ff348a77e2db3e145818d623bb841bf326357c7b1d8850d25e55fd984bf95a89449672fa68bd6347fde362a9c

  • SSDEEP

    3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

Malware Config

Extracted

Family

redline

Botnet

virad

C2

77.91.124.82:19071

Attributes
  • auth_value

    434dd63619ca8bbf10125913fb40ca28

Targets

    • Target

      0x00060000000155ed-28.dat

    • Size

      174KB

    • MD5

      b50d0732da7f6322d7375a60182fe2db

    • SHA1

      834f2bdd90694bb35f559ab6368227dd866ee204

    • SHA256

      59ba53db96caeffcab570d7fc848de3d1fa37be90296ec061f1fa36feafa67f6

    • SHA512

      c4c327b716a5816254c659cea8dcdcddce84d59ff348a77e2db3e145818d623bb841bf326357c7b1d8850d25e55fd984bf95a89449672fa68bd6347fde362a9c

    • SSDEEP

      3072:tw1a8OzGI0tR3TROjAr+jRC0+E0q6GPcWKdufXQtSoJ48e8hr:tw12GI0tR3T6+E0RfWKdufXQtSoe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks