Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    J94vEGUX.exe

  • Size

    2KB

  • Sample

    230701-hyjgvsha2y

  • MD5

    12b7ab8d6832a7ce580266baa4c2c4da

  • SHA1

    16f51e9986289e470adc69d0586d8d6d76a02afa

  • SHA256

    472e4f80a21736d734de6735d6686d4526d76ff68c3ffc5880d0e44580b1b0ba

  • SHA512

    3d493530c92286ca2a7b7ef4cd55dec26e18fc2bdc8f638da537631c03b7d5c477e5fb59db19b611ec92f071aa72396abbd3e4c8b7b59efd87d806395ff811f8

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

46.4.114.111:9999

Targets

    • Target

      J94vEGUX.exe

    • Size

      2KB

    • MD5

      12b7ab8d6832a7ce580266baa4c2c4da

    • SHA1

      16f51e9986289e470adc69d0586d8d6d76a02afa

    • SHA256

      472e4f80a21736d734de6735d6686d4526d76ff68c3ffc5880d0e44580b1b0ba

    • SHA512

      3d493530c92286ca2a7b7ef4cd55dec26e18fc2bdc8f638da537631c03b7d5c477e5fb59db19b611ec92f071aa72396abbd3e4c8b7b59efd87d806395ff811f8

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks