Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a2ac0a665c84a1f08ef9af0cd2c11d907f17302c9362084abf66b16dc2841b0d

  • Size

    14KB

  • Sample

    231104-v6yyqseh44

  • MD5

    0d9c8d7b5133509bd567ccb24d6acad2

  • SHA1

    130a74d508a4aa916b984cdc2229cab8158010b3

  • SHA256

    a2ac0a665c84a1f08ef9af0cd2c11d907f17302c9362084abf66b16dc2841b0d

  • SHA512

    92ed52de71604949eeb4ab6e939b74c85af413d79a10c2fee9c26510dd3b84c28c3446484a616353aac83b75ce3c05ce4c7e7fb5f910336671a25688b8dbbc37

  • SSDEEP

    192:f3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOyn/ZejDMN1:uMCfrfQ6tBSIqxeUN1

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://85.31.233.108:80/rQb7

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)

Targets

    • Target

      a2ac0a665c84a1f08ef9af0cd2c11d907f17302c9362084abf66b16dc2841b0d

    • Size

      14KB

    • MD5

      0d9c8d7b5133509bd567ccb24d6acad2

    • SHA1

      130a74d508a4aa916b984cdc2229cab8158010b3

    • SHA256

      a2ac0a665c84a1f08ef9af0cd2c11d907f17302c9362084abf66b16dc2841b0d

    • SHA512

      92ed52de71604949eeb4ab6e939b74c85af413d79a10c2fee9c26510dd3b84c28c3446484a616353aac83b75ce3c05ce4c7e7fb5f910336671a25688b8dbbc37

    • SSDEEP

      192:f3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOyn/ZejDMN1:uMCfrfQ6tBSIqxeUN1

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks