Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
file
-
Size
416KB
-
Sample
230919-ptp76sba74
-
MD5
bd3b53853c6656e005bd1c05ffd778e9
-
SHA1
88d969d3ad871a56a0fc955a797ca12fe0d3c736
-
SHA256
ab90800754672ac0c7014077fa23ed82e1c975ec78059e408deb7130b03928e4
-
SHA512
a859971eb331ba80d50615b40cfd88cfdd08fa54d9bec40d3c1348da96812e5d9357bb8aa7bd11502cf21c09bbbe2367bc71ee5c7d9ee528f89924c36a1ce166
-
SSDEEP
12288:UkO1DztkWyMJaM73tBjxaNuI9wXcwyh8AxZMHfR0W2:UrNJaM7fgNuI9wXcwyh8AxZu
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
file
-
Size
416KB
-
MD5
bd3b53853c6656e005bd1c05ffd778e9
-
SHA1
88d969d3ad871a56a0fc955a797ca12fe0d3c736
-
SHA256
ab90800754672ac0c7014077fa23ed82e1c975ec78059e408deb7130b03928e4
-
SHA512
a859971eb331ba80d50615b40cfd88cfdd08fa54d9bec40d3c1348da96812e5d9357bb8aa7bd11502cf21c09bbbe2367bc71ee5c7d9ee528f89924c36a1ce166
-
SSDEEP
12288:UkO1DztkWyMJaM73tBjxaNuI9wXcwyh8AxZMHfR0W2:UrNJaM7fgNuI9wXcwyh8AxZu
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-