Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.a332d9a03fc5f058bbe43920c63a82343f4968584fd3de95247b422658bd2518.unknown

  • Size

    3KB

  • Sample

    231112-vqawzahg97

  • MD5

    c1a9097d7c7ee35e32edada3f14654c5

  • SHA1

    51f9d6b23289ef25710ebe5954c7116437f2c779

  • SHA256

    a332d9a03fc5f058bbe43920c63a82343f4968584fd3de95247b422658bd2518

  • SHA512

    efb936d3b69454756799f1322959eaf8a6d6b74f3d73db12effc884566867c8022b87000a07a9e9d66ea1be7260ae5453ee49ba5c94173924e8f233a088dca90

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

18.177.60.68:11625

Targets

    • Target

      NEAS.a332d9a03fc5f058bbe43920c63a82343f4968584fd3de95247b422658bd2518.unknown

    • Size

      3KB

    • MD5

      c1a9097d7c7ee35e32edada3f14654c5

    • SHA1

      51f9d6b23289ef25710ebe5954c7116437f2c779

    • SHA256

      a332d9a03fc5f058bbe43920c63a82343f4968584fd3de95247b422658bd2518

    • SHA512

      efb936d3b69454756799f1322959eaf8a6d6b74f3d73db12effc884566867c8022b87000a07a9e9d66ea1be7260ae5453ee49ba5c94173924e8f233a088dca90

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks