Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

69c3ee301e...d2.exe

windows7-x64

10

69c3ee301e...d2.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    148s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    23/11/2024, 23:27 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    69c3ee301e98ad52b63f84c0d73e5f07b7c227f4277af9dae6d9efda6e2d98d2.exe

  • Size

    72KB

  • MD5

    96d385335231e4942746da17fe64a65e

  • SHA1

    f6df159564e3de7686dfff1812e991e7af54dc56

  • SHA256

    69c3ee301e98ad52b63f84c0d73e5f07b7c227f4277af9dae6d9efda6e2d98d2

  • SHA512

    196bc537750932862cc1bcea539a1ea6842a775032126f6974ba4f482879062e67b16a411c6d4bed5e6cad3b62eb86a85e116c72a472f650365fc6bfa6705793

  • SSDEEP

    1536:IgYz1zo6ornGIneqmBs2W3nmwdeMb+KR0Nc8QsJq39:VYhzoNjfepi20pee0Nc8QsC9

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Signatures

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit
  • Metasploit family
    metasploit
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\69c3ee301e98ad52b63f84c0d73e5f07b7c227f4277af9dae6d9efda6e2d98d2.exe
    "C:\Users\Admin\AppData\Local\Temp\69c3ee301e98ad52b63f84c0d73e5f07b7c227f4277af9dae6d9efda6e2d98d2.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1744

Network

    No results found
  • 172.20.10.4:443
    69c3ee301e98ad52b63f84c0d73e5f07b7c227f4277af9dae6d9efda6e2d98d2.exe
    1.1kB
     22
No results found

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1744-0-0x0000000000020000-0x0000000000021000-memory.dmp

    Filesize

    4KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.