Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0367b08d1b72bd3d0fdca7de187b9dc6

  • Size

    4.4MB

  • Sample

    231229-zftzbaeebq

  • MD5

    0367b08d1b72bd3d0fdca7de187b9dc6

  • SHA1

    8fb04d525032edd7cabaf50af9f493ee04c58a48

  • SHA256

    a951b0a48877f40e9630d1a4a8f5f37f8b376800e185d4c70e241917249cf48e

  • SHA512

    14d03cf0d3564a1337fca87c16ad1df08687c5daa431f406dc1492d00a0985333fd1f59e3c521b67211c7f25af60b417042ca88e3b436ffe4ebc4ab566af44f6

  • SSDEEP

    98304:8Iu065i558It90eELh3/9QAtK6QqASVUFhm7aRVpAvHfWK1kIqKlbSs5tT1gArJR:c0ui558I8eyh3VVCqARFhGO+OsoKnJdb

Malware Config

Extracted

Family

metasploit

Version

windows/single_exec

Targets

    • Target

      0367b08d1b72bd3d0fdca7de187b9dc6

    • Size

      4.4MB

    • MD5

      0367b08d1b72bd3d0fdca7de187b9dc6

    • SHA1

      8fb04d525032edd7cabaf50af9f493ee04c58a48

    • SHA256

      a951b0a48877f40e9630d1a4a8f5f37f8b376800e185d4c70e241917249cf48e

    • SHA512

      14d03cf0d3564a1337fca87c16ad1df08687c5daa431f406dc1492d00a0985333fd1f59e3c521b67211c7f25af60b417042ca88e3b436ffe4ebc4ab566af44f6

    • SSDEEP

      98304:8Iu065i558It90eELh3/9QAtK6QqASVUFhm7aRVpAvHfWK1kIqKlbSs5tT1gArJR:c0ui558I8eyh3VVCqARFhGO+OsoKnJdb

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

    • Glupteba payload

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Modifies Windows Firewall

MITRE ATT&CK Enterprise v15

Tasks