Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93

  • Size

    168KB

  • Sample

    240516-d9q9maah49

  • MD5

    39d4a3f53ebbcda445c233b1856eeba4

  • SHA1

    7c6796e09a13f9df6edd89f4ec17c153e9d54a51

  • SHA256

    d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93

  • SHA512

    4b4610c52223f0958acf747d3b1c729094d735681ff07ad7a89ccfb077009993eeff4f2709a5448e975f149015511b383b3f03bbca2db4c030d9ebcafe1d50f7

  • SSDEEP

    1536:/9OLnP5teqhVZCGW5WwPwf8WTaj3zJJeunCxwSTGqVS5Wbu1RGwqHd384wYkp8eK:/8T3Ei8Wej9gWqVSYQRqHd388e8h3

Malware Config

Extracted

Family

redline

Botnet

debro

C2

185.161.248.75:4132

Attributes
  • auth_value

    18c2c191aebfde5d1787ec8d805a01a8

Targets

    • Target

      d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93

    • Size

      168KB

    • MD5

      39d4a3f53ebbcda445c233b1856eeba4

    • SHA1

      7c6796e09a13f9df6edd89f4ec17c153e9d54a51

    • SHA256

      d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93

    • SHA512

      4b4610c52223f0958acf747d3b1c729094d735681ff07ad7a89ccfb077009993eeff4f2709a5448e975f149015511b383b3f03bbca2db4c030d9ebcafe1d50f7

    • SSDEEP

      1536:/9OLnP5teqhVZCGW5WwPwf8WTaj3zJJeunCxwSTGqVS5Wbu1RGwqHd384wYkp8eK:/8T3Ei8Wej9gWqVSYQRqHd388e8h3

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Detects executables packed with ConfuserEx Mod

MITRE ATT&CK Matrix

Tasks