Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b64c47af5ecd70eacd0b8a03422c56a2_JaffaCakes118

  • Size

    216KB

  • Sample

    240822-esystaxhjb

  • MD5

    b64c47af5ecd70eacd0b8a03422c56a2

  • SHA1

    919384f69708b2d3d7799d0146f4a031e1895517

  • SHA256

    ece9dc60dd1281e807e49e5456216b2027005716723489e97f360e2f5c9b9f94

  • SHA512

    856b9e5648a38485e976b2f3bd10995a8e01449e4d3ece59fe741b8ad73e72ff377092843de3a1e5f32683db9bef1d721e81a2d3a8a3723a9bdeb07b6665b2a2

  • SSDEEP

    6144:sDeI9vX3/qx8YJ4RXqinw96I3094g505e:sVtve8GUXHw96Q094goe

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.88.128:4444

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

    • Target

      b64c47af5ecd70eacd0b8a03422c56a2_JaffaCakes118

    • Size

      216KB

    • MD5

      b64c47af5ecd70eacd0b8a03422c56a2

    • SHA1

      919384f69708b2d3d7799d0146f4a031e1895517

    • SHA256

      ece9dc60dd1281e807e49e5456216b2027005716723489e97f360e2f5c9b9f94

    • SHA512

      856b9e5648a38485e976b2f3bd10995a8e01449e4d3ece59fe741b8ad73e72ff377092843de3a1e5f32683db9bef1d721e81a2d3a8a3723a9bdeb07b6665b2a2

    • SSDEEP

      6144:sDeI9vX3/qx8YJ4RXqinw96I3094g505e:sVtve8GUXHw96Q094goe

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Enterprise v15

Tasks