Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    707876ba6922d4406fe49d801530e970046771d2d4e7cc23605dd3f18ae083d4

  • Size

    298KB

  • Sample

    241109-a7vmgstekm

  • MD5

    3419d615fa048303d3e2335dfb6917b8

  • SHA1

    ab58c7989d87bd395e41902ebf4ce543eff386f6

  • SHA256

    707876ba6922d4406fe49d801530e970046771d2d4e7cc23605dd3f18ae083d4

  • SHA512

    060fb47a8885643b3c1ddf64aa5c0ee4592a4c5f716d0fce099832866be94d7288377e55741838ea319b63ac0c8995965eb488f0c2f94b3710300a9ec8b1d951

  • SSDEEP

    6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

Malware Config

Extracted

Family

redline

Botnet

1

C2

45.9.20.59:46287

Attributes
  • auth_value

    ec6ada170bcec2e72f0e1f3954547f73

Targets

    • Target

      707876ba6922d4406fe49d801530e970046771d2d4e7cc23605dd3f18ae083d4

    • Size

      298KB

    • MD5

      3419d615fa048303d3e2335dfb6917b8

    • SHA1

      ab58c7989d87bd395e41902ebf4ce543eff386f6

    • SHA256

      707876ba6922d4406fe49d801530e970046771d2d4e7cc23605dd3f18ae083d4

    • SHA512

      060fb47a8885643b3c1ddf64aa5c0ee4592a4c5f716d0fce099832866be94d7288377e55741838ea319b63ac0c8995965eb488f0c2f94b3710300a9ec8b1d951

    • SSDEEP

      6144:52ECIjjW+LuLIe0T1eXwp8bXk3X4G1cmL2Gp2eT:5FCIjjW6vTHcmLxAe

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks