Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

906d63b7bc...cs.exe

windows7-x64

10

906d63b7bc...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    906d63b7bc17c94b32a3183856f71650_NeikiAnalytics.exe

  • Size

    172KB

  • Sample

    240524-31c33sff2y

  • MD5

    906d63b7bc17c94b32a3183856f71650

  • SHA1

    ebe61b3c96b16144d355058ce12835be79380f46

  • SHA256

    0c847d97c063e8c8d003169d59e68340f3e0af0bd3ce24b6f4c28e3e58a240a5

  • SHA512

    2145d1d93a7730b413efc9836bba077a47f61008370a19d6e3b5f6631eac49e00b6e1b11b6cda063d4e776aff9a83621772deb51aec0c98e20a23f3892bb3f7c

  • SSDEEP

    3072:gi0IDvSs8p2hxNHeMqnm4XaSK0ghE8e8hD:XJ91QLXaSK0ghE

Score
10/10
redlinedroidinfostealer

Malware Config

Extracted

Family

redline

Botnet

droid

C2

83.97.73.129:19068

Attributes
  • auth_value

    4e534d26d67e90669e9843dbbfac4c52

Targets

    • Target

      906d63b7bc17c94b32a3183856f71650_NeikiAnalytics.exe

    • Size

      172KB

    • MD5

      906d63b7bc17c94b32a3183856f71650

    • SHA1

      ebe61b3c96b16144d355058ce12835be79380f46

    • SHA256

      0c847d97c063e8c8d003169d59e68340f3e0af0bd3ce24b6f4c28e3e58a240a5

    • SHA512

      2145d1d93a7730b413efc9836bba077a47f61008370a19d6e3b5f6631eac49e00b6e1b11b6cda063d4e776aff9a83621772deb51aec0c98e20a23f3892bb3f7c

    • SSDEEP

      3072:gi0IDvSs8p2hxNHeMqnm4XaSK0ghE8e8hD:XJ91QLXaSK0ghE

    Score
    10/10
    redlinedroidinfostealer

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks