Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e46678da418a6c2ab69053b3ea93676ecaa1ed4e57945c3be107d8ee295c0592

  • Size

    434KB

  • Sample

    241111-bpjb6sygrr

  • MD5

    9c67ad650332ae0167f1645b2ee8fbc1

  • SHA1

    c9697918495b839a4ee37aced39ecfa6effd3c98

  • SHA256

    e46678da418a6c2ab69053b3ea93676ecaa1ed4e57945c3be107d8ee295c0592

  • SHA512

    91313730ae1ef0041353e19125bbaa2802bccf78091a53ddce5c48f7a33babe0ca6351927cbf590b5d0932d03087e163af703b497783466cfc1e61e6be6e8324

  • SSDEEP

    6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      e46678da418a6c2ab69053b3ea93676ecaa1ed4e57945c3be107d8ee295c0592

    • Size

      434KB

    • MD5

      9c67ad650332ae0167f1645b2ee8fbc1

    • SHA1

      c9697918495b839a4ee37aced39ecfa6effd3c98

    • SHA256

      e46678da418a6c2ab69053b3ea93676ecaa1ed4e57945c3be107d8ee295c0592

    • SHA512

      91313730ae1ef0041353e19125bbaa2802bccf78091a53ddce5c48f7a33babe0ca6351927cbf590b5d0932d03087e163af703b497783466cfc1e61e6be6e8324

    • SSDEEP

      6144:IA/r6ksws1/whwnCWCDmV344pWNE20JvHoinidCso6URDkp6:J/rroDCWeW7sE20JPoinnso6UdK

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks