Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    MGKaJt9P

  • Size

    3KB

  • Sample

    230630-n9q9qsaa93

  • MD5

    ecad74c71cd9580c73c3732d0e160aed

  • SHA1

    8689190d9e00a27a869b8d560d4b6f60c9dda431

  • SHA256

    8bd256602508869a8555f8afb53cb6842db6786f0f571713c0c82d85d9ab9b2b

  • SHA512

    41f1eb008214bda3764686e2281842e9c469f143a052ffec2c6541ca46f87342ba7d8c9467ecc2d5c6ced31ccb6327bf453d73cadedb0e99d78c7fa580e490ff

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

18.139.9.214:12258

Targets

    • Target

      MGKaJt9P

    • Size

      3KB

    • MD5

      ecad74c71cd9580c73c3732d0e160aed

    • SHA1

      8689190d9e00a27a869b8d560d4b6f60c9dda431

    • SHA256

      8bd256602508869a8555f8afb53cb6842db6786f0f571713c0c82d85d9ab9b2b

    • SHA512

      41f1eb008214bda3764686e2281842e9c469f143a052ffec2c6541ca46f87342ba7d8c9467ecc2d5c6ced31ccb6327bf453d73cadedb0e99d78c7fa580e490ff

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks