Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab04016132405a78320fe5f36399be8daeadc469aaad9a7b856ca1031bde6e03

  • Size

    384KB

  • Sample

    241111-clv28szfkr

  • MD5

    a5eec0dc03143a26316c62398639605c

  • SHA1

    c78da3fd06b47a71fad0c64884ba6eaff5325581

  • SHA256

    ab04016132405a78320fe5f36399be8daeadc469aaad9a7b856ca1031bde6e03

  • SHA512

    268db9d3ef63d88c86363319d0a0118a638f7b7888a59029004fad9ec580e54668bf962679eb49c9ae559a582d4a5a8033cfb862369cfe5dfd697cf06e21ba53

  • SSDEEP

    6144:os2P378tnAvAd/kvftVdy5Ue1GUgzMuU1vgcSwv:os2Pr8tnAIdMvfle1GAuGgXwv

Malware Config

Extracted

Family

redline

Botnet

sony

C2

193.233.20.33:4125

Attributes
  • auth_value

    1d93d1744381eeb4fcfd7c23ffe0f0b4

Targets

    • Target

      ab04016132405a78320fe5f36399be8daeadc469aaad9a7b856ca1031bde6e03

    • Size

      384KB

    • MD5

      a5eec0dc03143a26316c62398639605c

    • SHA1

      c78da3fd06b47a71fad0c64884ba6eaff5325581

    • SHA256

      ab04016132405a78320fe5f36399be8daeadc469aaad9a7b856ca1031bde6e03

    • SHA512

      268db9d3ef63d88c86363319d0a0118a638f7b7888a59029004fad9ec580e54668bf962679eb49c9ae559a582d4a5a8033cfb862369cfe5dfd697cf06e21ba53

    • SSDEEP

      6144:os2P378tnAvAd/kvftVdy5Ue1GUgzMuU1vgcSwv:os2Pr8tnAIdMvfle1GAuGgXwv

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks