Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93
-
Size
168KB
-
Sample
240516-d9q9maah49
-
MD5
39d4a3f53ebbcda445c233b1856eeba4
-
SHA1
7c6796e09a13f9df6edd89f4ec17c153e9d54a51
-
SHA256
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93
-
SHA512
4b4610c52223f0958acf747d3b1c729094d735681ff07ad7a89ccfb077009993eeff4f2709a5448e975f149015511b383b3f03bbca2db4c030d9ebcafe1d50f7
-
SSDEEP
1536:/9OLnP5teqhVZCGW5WwPwf8WTaj3zJJeunCxwSTGqVS5Wbu1RGwqHd384wYkp8eK:/8T3Ei8Wej9gWqVSYQRqHd388e8h3
Behavioral task
behavioral1
Sample
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
redline
debro
185.161.248.75:4132
-
auth_value
18c2c191aebfde5d1787ec8d805a01a8
Targets
-
-
Target
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93
-
Size
168KB
-
MD5
39d4a3f53ebbcda445c233b1856eeba4
-
SHA1
7c6796e09a13f9df6edd89f4ec17c153e9d54a51
-
SHA256
d141b87ffb564a538d856f2ae39d218f173c14afc1104da4b7bba22c304fdd93
-
SHA512
4b4610c52223f0958acf747d3b1c729094d735681ff07ad7a89ccfb077009993eeff4f2709a5448e975f149015511b383b3f03bbca2db4c030d9ebcafe1d50f7
-
SSDEEP
1536:/9OLnP5teqhVZCGW5WwPwf8WTaj3zJJeunCxwSTGqVS5Wbu1RGwqHd384wYkp8eK:/8T3Ei8Wej9gWqVSYQRqHd388e8h3
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
Detects executables packed with ConfuserEx Mod
-