Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0x00060000000231dd-41.dat

  • Size

    230KB

  • Sample

    231004-ll8srsce54

  • MD5

    0947cbafc812216a0229438a483e008b

  • SHA1

    5603e62d32beff84e6d93aad4c932deb2daaf8d7

  • SHA256

    6693b5888f371c064fab4dd3e0900963c9f185595ca045c962f218f3ae2b4db7

  • SHA512

    da1f4fd01efb23629daaa5b052a45159939a770918c6defdd7a75fac21159dc16391c454e818e4911edc70ed1042920c95580b714d7e9f3ec01d664537d28835

  • SSDEEP

    3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

Malware Config

Extracted

Family

redline

Botnet

gigant

C2

77.91.124.55:19071

Targets

    • Target

      0x00060000000231dd-41.dat

    • Size

      230KB

    • MD5

      0947cbafc812216a0229438a483e008b

    • SHA1

      5603e62d32beff84e6d93aad4c932deb2daaf8d7

    • SHA256

      6693b5888f371c064fab4dd3e0900963c9f185595ca045c962f218f3ae2b4db7

    • SHA512

      da1f4fd01efb23629daaa5b052a45159939a770918c6defdd7a75fac21159dc16391c454e818e4911edc70ed1042920c95580b714d7e9f3ec01d664537d28835

    • SSDEEP

      3072:sgspAnCNgcepupXKLh8DjV7OGt/qasDrTv+mIqd44oKG6g:jOACNgceQpXKLKdr/ODrTmmpd44oK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks