Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

38d6633fb2...21.exe

windows7-x64

10

38d6633fb2...21.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aeca60414f0732a6fc43f3580b5a9a40.bin

  • Size

    127KB

  • Sample

    231012-26rmzsgc93

  • MD5

    1c99b9113839cb6fba4c6423aac3eedf

  • SHA1

    9f6f5324828c6492e63dc4db1b0a46c45985753c

  • SHA256

    582a5aece86df24276f8a14d5ecec48d60d90f83c1bc5b7ae24d9abe0e0617af

  • SHA512

    86a2ede0c4c50ea2736ed40f635a1abccb096e661e7652fee83851e630cae22bcdc47de921a058453d7f973fa6e6f2b61cf338aba76cd9e535840da70a72ab57

  • SSDEEP

    3072:4GHFM6Ds4924Ww4rQwdGzQ+8cNhXct0MhEizyAhUCHdGR7oX:4Go4MXZkdzQdczXyDzyAhUCg7oX

Score
10/10
redline1509infostealer

Malware Config

Extracted

Family

redline

Botnet

1509

C2

176.123.9.142:14845

Attributes
  • auth_value

    e8ab62d10d26859f42bdbe0489305426

Targets

    • Target

      38d6633fb22c7deb15c8edb6d03c53b46f3ff9293193dc3c5ebddfc224910521.exe

    • Size

      290KB

    • MD5

      aeca60414f0732a6fc43f3580b5a9a40

    • SHA1

      89eb6d10dfc2fbfbc6a8c387c38048fdc52f1a2b

    • SHA256

      38d6633fb22c7deb15c8edb6d03c53b46f3ff9293193dc3c5ebddfc224910521

    • SHA512

      c7e7e7ae60945ac30ee082d5cff60d3599fb7e1fb59b0f8d85fea4582305351b889d3d8ca76b234e9b7a07f8a656a5a7efb4453b435b8e4e37736c58c1b17221

    • SSDEEP

      6144:RpPNtnf9KhTxFt4PmeNLqdqrXwBMixAPcEXEYN:RpHYp7uPme1cqABBxAPcEXE2

    Score
    10/10
    redline1509infostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks