redline | c771e7b174be01cbfa98ad37d2ac589eaa1be47a4b27a6a2f12be7609afffd7e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1568-566-0...ry.exe

windows7-x64

1568-566-0...ry.exe

windows10-2004-x64

Sharing

General

Target

1568-566-0x0000000000220000-0x000000000025E000-memory.dmp
Size

248KB
Sample

231113-ltff7aca2w
MD5

96b2c26b9092d7af0fecf31e45ebc9aa
SHA1

0daeca7c95c6628e3c45c7915b2e43986417c9a4
SHA256

c771e7b174be01cbfa98ad37d2ac589eaa1be47a4b27a6a2f12be7609afffd7e
SHA512

a57fe51826fce0947ca683ecde2d7bda95d04d6f62bb12c30a3774b988d5fd1feaa386ed801019d7518086348096eb2a8a59e03ecd00e6d3851028abf0187d5e
SSDEEP

3072:Neng4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzN:qg/XNgcWr3aPu/5FlvDYLpqt

Score

10^/10

redline @ytlogsbot

Static task

static1

@ytlogsbot redline

3 signatures

Behavioral task

behavioral1

Sample

1568-566-0x0000000000220000-0x000000000025E000-memory.exe

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1568-566-0x0000000000220000-0x000000000025E000-memory.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

@ytlogsbot

C2

194.169.175.235:42691

Targets

- Target
  
  1568-566-0x0000000000220000-0x000000000025E000-memory.dmp
- Size
  
  248KB
- MD5
  
  96b2c26b9092d7af0fecf31e45ebc9aa
- SHA1
  
  0daeca7c95c6628e3c45c7915b2e43986417c9a4
- SHA256
  
  c771e7b174be01cbfa98ad37d2ac589eaa1be47a4b27a6a2f12be7609afffd7e
- SHA512
  
  a57fe51826fce0947ca683ecde2d7bda95d04d6f62bb12c30a3774b988d5fd1feaa386ed801019d7518086348096eb2a8a59e03ecd00e6d3851028abf0187d5e
- SSDEEP
  
  3072:Neng4InXNgcy9Wy3aPGcntCTt/qhGFlvDYLXZiTtzN:qg/XNgcWr3aPu/5FlvDYLpqt
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

@ytlogsbotredline

behavioral1

behavioral2

© 2018-2025

Terms | Privacy