Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42fc29674abff7a0076291078e96ef83_JaffaCakes118

  • Size

    72KB

  • Sample

    241014-tfjwfsxclp

  • MD5

    42fc29674abff7a0076291078e96ef83

  • SHA1

    c37d62605939da06c95ea4d4b7254548262a05b5

  • SHA256

    89ad315a5e7e21b9dfab420e4c08587bb348891f436ffe0e4b52ddb8acec7929

  • SHA512

    66d727479f049ad69b7a9a32e04dcb207efce22c7b49243e3d987ec380f641e1ae29eee23e06113a30b69be1d0169c9f66ff1fd23b82dcd42aee042da52b514b

  • SSDEEP

    1536:IFmcDBL4DvrR99fu+iZqEwrej2uTMb+KR0Nc8QsJq39:0dK/f9fDeGMe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp_allports

C2

192.168.1.91:1

Targets

    • Target

      42fc29674abff7a0076291078e96ef83_JaffaCakes118

    • Size

      72KB

    • MD5

      42fc29674abff7a0076291078e96ef83

    • SHA1

      c37d62605939da06c95ea4d4b7254548262a05b5

    • SHA256

      89ad315a5e7e21b9dfab420e4c08587bb348891f436ffe0e4b52ddb8acec7929

    • SHA512

      66d727479f049ad69b7a9a32e04dcb207efce22c7b49243e3d987ec380f641e1ae29eee23e06113a30b69be1d0169c9f66ff1fd23b82dcd42aee042da52b514b

    • SSDEEP

      1536:IFmcDBL4DvrR99fu+iZqEwrej2uTMb+KR0Nc8QsJq39:0dK/f9fDeGMe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Enterprise v15

Tasks