redline | 82aa606282d9acdc897eb6a80b50326a90e1a3abcef87e441f4b34e73bec1028 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2836-45-0x...ry.exe

windows7-x64

2836-45-0x...ry.exe

windows10-2004-x64

Sharing

General

Target

2836-45-0x00000000000D0000-0x0000000000122000-memory.dmp
Size

328KB
Sample

240430-xlmfbadf4x
MD5

448768aefbcbe0cd1f13125279568065
SHA1

cdac2ab7645e7147ee84a589462a9e8f62769612
SHA256

82aa606282d9acdc897eb6a80b50326a90e1a3abcef87e441f4b34e73bec1028
SHA512

cdba3b40c86e9af8febb75b2b20bf195cad53df6abeaaa4270dc621c97eb8cb02f7f4d350c06c261c8e1a6bea83a1331963f21e7d2835820b92a97b87860fdf3
SSDEEP

3072:Bq6EgY6igrUjXwwRwPfsGZdkfD13TPCtASKNAcZqf7D349eqiOLibBOL:gqY6i7wPvZ2fR3TP+AvAcZqf7DIHL

Score

10^/10

redline new

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2836-45-0x00000000000D0000-0x0000000000122000-memory.exe

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2836-45-0x00000000000D0000-0x0000000000122000-memory.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

new

C2

91.92.249.182:34419

Targets

- Target
  
  2836-45-0x00000000000D0000-0x0000000000122000-memory.dmp
- Size
  
  328KB
- MD5
  
  448768aefbcbe0cd1f13125279568065
- SHA1
  
  cdac2ab7645e7147ee84a589462a9e8f62769612
- SHA256
  
  82aa606282d9acdc897eb6a80b50326a90e1a3abcef87e441f4b34e73bec1028
- SHA512
  
  cdba3b40c86e9af8febb75b2b20bf195cad53df6abeaaa4270dc621c97eb8cb02f7f4d350c06c261c8e1a6bea83a1331963f21e7d2835820b92a97b87860fdf3
- SSDEEP
  
  3072:Bq6EgY6igrUjXwwRwPfsGZdkfD13TPCtASKNAcZqf7D349eqiOLibBOL:gqY6i7wPvZ2fR3TP+AvAcZqf7DIHL
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy