Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e9d3897f9041d782db9d6bd23ca1b17f5f854ebc9ed5b64fff8d7d53dacf221

  • Size

    749KB

  • Sample

    241009-tjk8pashjh

  • MD5

    2b7df1c4fe3b9006c21dba0ffae5e044

  • SHA1

    167e162d881341a0f0bc64901591e3f525c907ba

  • SHA256

    0e9d3897f9041d782db9d6bd23ca1b17f5f854ebc9ed5b64fff8d7d53dacf221

  • SHA512

    72aacfc12f24608225e379a747c320759c046de07cc971c5493628f2ddab93a74f2cde293ac5dcfd2fe95a4f42f5b001b06a6a8038dbb9069ccaa4be10189ce4

  • SSDEEP

    12288:peqW86Tf7xglFIV/4Zf8FkKBPFrmtJxv/znLABkeGevRcAqn9LqgqmlrexDvBIRq:pV6fxg7IeEOKXrmtJx3rLABk1eFElrep

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.31.19.65:4444

Targets

    • Target

      0e9d3897f9041d782db9d6bd23ca1b17f5f854ebc9ed5b64fff8d7d53dacf221

    • Size

      749KB

    • MD5

      2b7df1c4fe3b9006c21dba0ffae5e044

    • SHA1

      167e162d881341a0f0bc64901591e3f525c907ba

    • SHA256

      0e9d3897f9041d782db9d6bd23ca1b17f5f854ebc9ed5b64fff8d7d53dacf221

    • SHA512

      72aacfc12f24608225e379a747c320759c046de07cc971c5493628f2ddab93a74f2cde293ac5dcfd2fe95a4f42f5b001b06a6a8038dbb9069ccaa4be10189ce4

    • SSDEEP

      12288:peqW86Tf7xglFIV/4Zf8FkKBPFrmtJxv/znLABkeGevRcAqn9LqgqmlrexDvBIRq:pV6fxg7IeEOKXrmtJx3rLABk1eFElrep

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Enterprise v15

Tasks