Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
MGKaJt9P
-
Size
3KB
-
Sample
230630-n9q9qsaa93
-
MD5
ecad74c71cd9580c73c3732d0e160aed
-
SHA1
8689190d9e00a27a869b8d560d4b6f60c9dda431
-
SHA256
8bd256602508869a8555f8afb53cb6842db6786f0f571713c0c82d85d9ab9b2b
-
SHA512
41f1eb008214bda3764686e2281842e9c469f143a052ffec2c6541ca46f87342ba7d8c9467ecc2d5c6ced31ccb6327bf453d73cadedb0e99d78c7fa580e490ff
Behavioral task
behavioral1
Sample
MGKaJt9P.ps1
Resource
win7-20230621-en
Behavioral task
behavioral2
Sample
MGKaJt9P.ps1
Resource
win10v2004-20230621-en
Malware Config
Extracted
metasploit
metasploit_stager
18.139.9.214:12258
Targets
-
-
Target
MGKaJt9P
-
Size
3KB
-
MD5
ecad74c71cd9580c73c3732d0e160aed
-
SHA1
8689190d9e00a27a869b8d560d4b6f60c9dda431
-
SHA256
8bd256602508869a8555f8afb53cb6842db6786f0f571713c0c82d85d9ab9b2b
-
SHA512
41f1eb008214bda3764686e2281842e9c469f143a052ffec2c6541ca46f87342ba7d8c9467ecc2d5c6ced31ccb6327bf453d73cadedb0e99d78c7fa580e490ff
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Blocklisted process makes network request
-