Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    26bc7f6c95c7d54fc72530fb119d499be4d4e4a04deb93d36c0f2286a17528dfN.exe

  • Size

    72KB

  • Sample

    250120-3mttnsvpbs

  • MD5

    586287a7c6f4531e04573cd74d2f6f30

  • SHA1

    050eeecc644eebd6afe0fcd04ed20504be9e135c

  • SHA256

    26bc7f6c95c7d54fc72530fb119d499be4d4e4a04deb93d36c0f2286a17528df

  • SHA512

    5f9cafc7b527500a1fd16da2f47126b98bc0b3878f3ecc0cb2428b8f6fb6741a6fdcaed58bef87d88fad7191b73a6fa9ee8c50c0ae057aef967689bd690a7910

  • SSDEEP

    1536:I/ZvtB/QWxaOUqYnXewMKViAsMb+KR0Nc8QsJq39:SZpaONYuwj/se0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.11.136:4444

Targets

    • Target

      26bc7f6c95c7d54fc72530fb119d499be4d4e4a04deb93d36c0f2286a17528dfN.exe

    • Size

      72KB

    • MD5

      586287a7c6f4531e04573cd74d2f6f30

    • SHA1

      050eeecc644eebd6afe0fcd04ed20504be9e135c

    • SHA256

      26bc7f6c95c7d54fc72530fb119d499be4d4e4a04deb93d36c0f2286a17528df

    • SHA512

      5f9cafc7b527500a1fd16da2f47126b98bc0b3878f3ecc0cb2428b8f6fb6741a6fdcaed58bef87d88fad7191b73a6fa9ee8c50c0ae057aef967689bd690a7910

    • SSDEEP

      1536:I/ZvtB/QWxaOUqYnXewMKViAsMb+KR0Nc8QsJq39:SZpaONYuwj/se0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Metasploit family

MITRE ATT&CK Enterprise v15

Tasks