Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121N.exe

  • Size

    72KB

  • Sample

    241226-faw2yaxjct

  • MD5

    5866800f64006e06bd28cd52ee3d1410

  • SHA1

    d63bb8cb5bb1405235d44f7f3ccb685aa33918fc

  • SHA256

    ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121

  • SHA512

    edca45655b32a3d7a71a01c77540f8fd10995de88f63c76993ab527ab578747509102afcd1d16b507afac44e46fbf5bf5c230c073dd3ef8f61b6f3545cfeb8bc

  • SSDEEP

    1536:IvvNbOHIwU3n9ReIe8Mb+KR0Nc8QsJq39:gxOHIwc94Qe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.101.204:6666

Targets

    • Target

      ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121N.exe

    • Size

      72KB

    • MD5

      5866800f64006e06bd28cd52ee3d1410

    • SHA1

      d63bb8cb5bb1405235d44f7f3ccb685aa33918fc

    • SHA256

      ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121

    • SHA512

      edca45655b32a3d7a71a01c77540f8fd10995de88f63c76993ab527ab578747509102afcd1d16b507afac44e46fbf5bf5c230c073dd3ef8f61b6f3545cfeb8bc

    • SSDEEP

      1536:IvvNbOHIwU3n9ReIe8Mb+KR0Nc8QsJq39:gxOHIwc94Qe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Metasploit family

MITRE ATT&CK Enterprise v15

Tasks