Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0x00070000000230ab-34.dat

  • Size

    174KB

  • Sample

    231011-ptwpyshh63

  • MD5

    9720c0edaff22a7db3b996b8bde4b365

  • SHA1

    a73acacd1db5882f7668d54a6eca0119766d7b04

  • SHA256

    708f07222500e23a3186ca9bd17bcc29168f4b83cc79aa5b064ba739cbe2f4ce

  • SHA512

    13ec4ab1b07e8e71bc326049775acc3bc6db40fa122f3ddd280cedde6bbe78dbbf8890f6331c4cbf43970c85b54382d55d6c28d3b5abf8f70f2bcbcdcf2f2212

  • SSDEEP

    3072:HmVenX0I0V916dOBCymtjvqE0WIkuvwJx8e8hN:Hmq0I0V9161DqE0Vvwn

Malware Config

Extracted

Family

redline

Botnet

luate

C2

77.91.124.55:19071

Attributes
  • auth_value

    e45cd419aba6c9d372088ffe5629308b

Targets

    • Target

      0x00070000000230ab-34.dat

    • Size

      174KB

    • MD5

      9720c0edaff22a7db3b996b8bde4b365

    • SHA1

      a73acacd1db5882f7668d54a6eca0119766d7b04

    • SHA256

      708f07222500e23a3186ca9bd17bcc29168f4b83cc79aa5b064ba739cbe2f4ce

    • SHA512

      13ec4ab1b07e8e71bc326049775acc3bc6db40fa122f3ddd280cedde6bbe78dbbf8890f6331c4cbf43970c85b54382d55d6c28d3b5abf8f70f2bcbcdcf2f2212

    • SSDEEP

      3072:HmVenX0I0V916dOBCymtjvqE0WIkuvwJx8e8hN:Hmq0I0V9161DqE0Vvwn

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

MITRE ATT&CK Matrix

Tasks