Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6c55b3c4ee18de7f7535cb7d568d214982a1e61c

  • Size

    310KB

  • Sample

    241111-bsgyhsyhmq

  • MD5

    aa8338c6705a22eca86e5770c0c8aadc

  • SHA1

    6c55b3c4ee18de7f7535cb7d568d214982a1e61c

  • SHA256

    14a718921d7a477d6f4fff0751bb0bf7f11af27bccda16e6a7774ab15dd53701

  • SHA512

    404fc1dad82a45bb10658cd22aabd7b695f36b213ed301e879dcf81ba0e6428174e0eb7a26ba04a3ef57a1889b6ebee0acff414efaeff0fd3b1818f15c006a10

  • SSDEEP

    6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

Malware Config

Extracted

Family

redline

Botnet

123

C2

78.153.144.3:2510

Attributes
  • auth_value

    cd6abb0af211bce081d7bf127cc26835

Targets

    • Target

      6c55b3c4ee18de7f7535cb7d568d214982a1e61c

    • Size

      310KB

    • MD5

      aa8338c6705a22eca86e5770c0c8aadc

    • SHA1

      6c55b3c4ee18de7f7535cb7d568d214982a1e61c

    • SHA256

      14a718921d7a477d6f4fff0751bb0bf7f11af27bccda16e6a7774ab15dd53701

    • SHA512

      404fc1dad82a45bb10658cd22aabd7b695f36b213ed301e879dcf81ba0e6428174e0eb7a26ba04a3ef57a1889b6ebee0acff414efaeff0fd3b1818f15c006a10

    • SSDEEP

      6144:eUgLpjp90jrpL6sz42bqrJiZXU+lpEoZ2v3pCLT0mY0:eUg91qjrlJzCUZXU+7E3v5CLTJP

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks