Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9251611a8fea1d7aa97e23bc644ebda2e6f588d8cad899d812454e739e667189.exe

  • Size

    300KB

  • Sample

    240714-ljx89axend

  • MD5

    0eee364c84b92138879a0161c5a54cca

  • SHA1

    65ebfd859b843f8878c1d2f85c6632dc1f6d6711

  • SHA256

    9251611a8fea1d7aa97e23bc644ebda2e6f588d8cad899d812454e739e667189

  • SHA512

    ca61e786913ce8c353508727e5d2ea585576f593e0638063037bd823968256379f4809eede8f62d4bd081907dca55e2b89c942b4b2ff0d806971793a0cd726d7

  • SSDEEP

    3072:6cZqf7D34Wp/0+mAUkywpgQEgjpB1fA0PuTVAtkxzW3RseqiOL2bBOA:6cZqf7DIun7TRB1fA0GTV8kEUL

Malware Config

Extracted

Family

redline

Botnet

Vip-Data

C2

212.162.149.77:1912

Targets

    • Target

      9251611a8fea1d7aa97e23bc644ebda2e6f588d8cad899d812454e739e667189.exe

    • Size

      300KB

    • MD5

      0eee364c84b92138879a0161c5a54cca

    • SHA1

      65ebfd859b843f8878c1d2f85c6632dc1f6d6711

    • SHA256

      9251611a8fea1d7aa97e23bc644ebda2e6f588d8cad899d812454e739e667189

    • SHA512

      ca61e786913ce8c353508727e5d2ea585576f593e0638063037bd823968256379f4809eede8f62d4bd081907dca55e2b89c942b4b2ff0d806971793a0cd726d7

    • SSDEEP

      3072:6cZqf7D34Wp/0+mAUkywpgQEgjpB1fA0PuTVAtkxzW3RseqiOL2bBOA:6cZqf7DIun7TRB1fA0GTV8kEUL

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

MITRE ATT&CK Matrix

Tasks