Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

c4231eeedc...20.exe

windows7-x64

10

c4231eeedc...20.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c4231eeedc4fd41bbfab2656580b0677c7dfbfd1481a3aeea47af5e176754d20

  • Size

    36KB

  • Sample

    231011-gw7k8sgb44

  • MD5

    aec1548cd32bcbbf6136a915e22cd446

  • SHA1

    ca12522a4f1fcb8a0293c14415054bbe017f84a8

  • SHA256

    c4231eeedc4fd41bbfab2656580b0677c7dfbfd1481a3aeea47af5e176754d20

  • SHA512

    5ae92a0a746454bb20d12974a84ae77e8509a767fe53d6b7ef6cefcbfc3f8ebacd44ada0c0d30868f45b83a010c563e2e4fc3876cefa8056902d897bad14eb0f

  • SSDEEP

    384:5wMZNMmMg7pMj0pdO3e+jCBwPhVZcDdFB8AHYw:5wMgPgVMj0pENhVmBFB8T

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://123.60.171.65:7878/WhFW

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MANM)

Targets

    • Target

      c4231eeedc4fd41bbfab2656580b0677c7dfbfd1481a3aeea47af5e176754d20

    • Size

      36KB

    • MD5

      aec1548cd32bcbbf6136a915e22cd446

    • SHA1

      ca12522a4f1fcb8a0293c14415054bbe017f84a8

    • SHA256

      c4231eeedc4fd41bbfab2656580b0677c7dfbfd1481a3aeea47af5e176754d20

    • SHA512

      5ae92a0a746454bb20d12974a84ae77e8509a767fe53d6b7ef6cefcbfc3f8ebacd44ada0c0d30868f45b83a010c563e2e4fc3876cefa8056902d897bad14eb0f

    • SSDEEP

      384:5wMZNMmMg7pMj0pdO3e+jCBwPhVZcDdFB8AHYw:5wMgPgVMj0pENhVmBFB8T

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks