Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

ae2cb28905...10.exe

windows7-x64

10

ae2cb28905...10.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    11/12/2024, 12:04 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ae2cb28905f25b3eaba7100ebe3f3f1cef2d65d7a67b7b5d4ee42f2818296910.exe

  • Size

    72KB

  • MD5

    f41cbd3bb72f95fd02608ada86129820

  • SHA1

    0ac256663428dda24b70667c7838d3ec09d36c57

  • SHA256

    ae2cb28905f25b3eaba7100ebe3f3f1cef2d65d7a67b7b5d4ee42f2818296910

  • SHA512

    ac704e2330ac472b3994d0d33c62f1d1107938d3a6248c57d27d928a8450aefec8bc4ab9b7939155397f7ec89ab166213ea0f7873546593160baf46b240641e4

  • SSDEEP

    1536:IbzkOQPBaG+Hv1M7RrMzFNAHX5DIhA6xMPMb+KR0Nc8QsJq3n:kzkOQPu1MFrEAHpD+A6xue0Nc8QsCn

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

145.93.174.16:4444

Signatures

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit
  • Metasploit family
    metasploit
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\ae2cb28905f25b3eaba7100ebe3f3f1cef2d65d7a67b7b5d4ee42f2818296910.exe
    "C:\Users\Admin\AppData\Local\Temp\ae2cb28905f25b3eaba7100ebe3f3f1cef2d65d7a67b7b5d4ee42f2818296910.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2104

Network

    No results found
  • 145.93.174.16:4444
    ae2cb28905f25b3eaba7100ebe3f3f1cef2d65d7a67b7b5d4ee42f2818296910.exe
    1.1kB
     22
No results found

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2104-0-0x0000000000020000-0x0000000000021000-memory.dmp

    Filesize

    4KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.